Comparison Overview

Torch Trust

Torch Way, Market Harborough, England, LE16 9HL, GB

Last Update: 2025-11-26

Between 750 and 799

http://www.torchtrust.org/

Torch Trust is a Christian organisation supporting blind and partially sighted people. Torch produces Christian reading in braille, giant print, audio and electronic media. It also publishes various magazines, produces Bibles, hymn books, Scripture text calendars, and operates a large free postal library of Christian books in accessible media. Torch runs over 100 fellowship groups across the country for blind and partially sighted people, as well as TorchTalk telephone friendship groups, book groups and more. Torch also produces Reflections, a weekly radio programme focusing on faith and disability. The show is broadcast on Premier Christian Radio and RNIB Insight Radio. Torch operates a Holiday & Retreat Centre in rural West Sussex, offering holidays that are designed especially for people with sight loss.

NAICS: 511

NAICS Definition: Publishing Industries (except Internet)

Employees: 29

Subsidiaries: 0

12-month incidents

Known data breaches

Attack type number

View Profile

Self-Directed Search (SDS)

Tampa, 33549, US

Last Update: 2025-11-26

Between 750 and 799

https://self-directed-search.com/

The SDS is a career assessment and exploration tool that matches an individual’s aspirations and talents to career choices and educational opportunities. It's a quick online test with immediate and interactive results. The SDS is the gold-standard career assessment and exploration tool. -Trusted for 50 years. -Administered more than 40 million times. -Translated into more than 30 languages. -Supported by more than 1,500 published research studies and 2,000 unique published references. -No special training needed to administer and score. Who uses the SDS? -Career counselors -Academic advisors -First year experience/college success faculty and staff -K–12 guidance counselors -Veterans’ organizations -TRIO organizations

NAICS: 511

NAICS Definition: Publishing Industries (except Internet)

Employees: None

Subsidiaries: 1

12-month incidents

Known data breaches

Attack type number

Torch Trust

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

https://images.rankiteo.com/companyimages/self-directed-search.jpeg

Self-Directed Search (SDS)

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Book and Periodical Publishing Industry Average (This Year)

No incidents recorded for Torch Trust in 2025.

Incidents vs Book and Periodical Publishing Industry Average (This Year)

No incidents recorded for Self-Directed Search (SDS) in 2025.

Incident History — Torch Trust (X = Date, Y = Severity)

Torch Trust cyber incidents detection timeline including parent company and subsidiaries

Incident History — Self-Directed Search (SDS) (X = Date, Y = Severity)

Self-Directed Search (SDS) cyber incidents detection timeline including parent company and subsidiaries

Torch Trust

Incidents

Self-Directed Search (SDS)

Incidents

Date Detected: 3/2022

Type:Breach

Attack Vector: Unauthorized Access

Blog: Blog

Torch Trust company demonstrates a stronger AI Cybersecurity Score compared to Self-Directed Search (SDS) company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Self-Directed Search (SDS) company has historically faced a number of disclosed cyber incidents, whereas Torch Trust company has not reported any.

In the current year, Self-Directed Search (SDS) company and Torch Trust company have not reported any cyber incidents.

Neither Self-Directed Search (SDS) company nor Torch Trust company has reported experiencing a ransomware attack publicly.

Self-Directed Search (SDS) company has disclosed at least one data breach, while Torch Trust company has not reported such incidents publicly.

Neither Self-Directed Search (SDS) company nor Torch Trust company has reported experiencing targeted cyberattacks publicly.

Neither Torch Trust company nor Self-Directed Search (SDS) company has reported experiencing or disclosing vulnerabilities publicly.

Neither Torch Trust nor Self-Directed Search (SDS) holds any compliance certifications.

Neither company holds any compliance certifications.

Self-Directed Search (SDS) company has more subsidiaries worldwide compared to Torch Trust company.

Neither Torch Trust nor Self-Directed Search (SDS) holds SOC 2 Type 1 certification.

Neither Torch Trust nor Self-Directed Search (SDS) holds SOC 2 Type 2 certification.

Neither Torch Trust nor Self-Directed Search (SDS) holds ISO 27001 certification.

Neither Torch Trust nor Self-Directed Search (SDS) holds PCI DSS certification.

Neither Torch Trust nor Self-Directed Search (SDS) holds HIPAA certification.

Neither Torch Trust nor Self-Directed Search (SDS) holds GDPR certification.

Description

ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss4

Base: 6.2

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss3

Base: 9.9

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

References

https://mattermost.com/security-updates

Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

References

https://mattermost.com/security-updates

Description

Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.

Published

Date

2025-11-27

Updated

Date

2025-11-27

References

https://devolutions.net/security/advisories/DEVO-2025-0018/

Description

Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.

Published

Date

2025-11-27

Updated

Date

2025-11-27

References

https://devolutions.net/security/advisories/DEVO-2025-0018/

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Torch Trust

VS

Self-Directed Search (SDS)

Torch Trust

Self-Directed Search (SDS)

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Book and Periodical Publishing Industry Average (This Year)

Incidents vs Book and Periodical Publishing Industry Average (This Year)

Incident History — Torch Trust (X = Date, Y = Severity)

Incident History — Self-Directed Search (SDS) (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-3261

Risk Information

CVE-2025-12421

Risk Information

CVE-2025-12559

Risk Information

CVE-2025-13765

CVE-2025-13758

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Torch Trust

VS

Self-Directed Search (SDS)

Torch Trust

Self-Directed Search (SDS)

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Book and Periodical Publishing Industry Average (This Year)

Incidents vs Book and Periodical Publishing Industry Average (This Year)

Incident History — Torch Trust (X = Date, Y = Severity)

Incident History — Self-Directed Search (SDS) (X = Date, Y = Severity)

Notable Incidents

No Incident

🔒 Incident : Breach PAR354072825

FAQ

Between Torch Trust company and Self-Directed Search (SDS) company, which one has the best AI Cybersecurity Score ?

Between Torch Trust company and Self-Directed Search (SDS) company, which one has experienced more cyber incidents in the past ?

Between Torch Trust company and Self-Directed Search (SDS) company, which one has experienced more cyber incidents this year ?

Between Torch Trust company and Self-Directed Search (SDS) company, which one has experienced at least one ransomware attack ?

Between Torch Trust company and Self-Directed Search (SDS) company, which one has experienced at least one data breach ?

Between Torch Trust company and Self-Directed Search (SDS) company, which one has experienced at least one targeted cyberattack ?

Between Torch Trust company and Self-Directed Search (SDS) company, which one has experienced at least one vulnerability ?

Between Torch Trust company and Self-Directed Search (SDS) company, which one holds the most compliance certifications ?

Between Torch Trust company and Self-Directed Search (SDS) company, which one holds the fewest compliance certifications ?

Between Torch Trust company and Self-Directed Search (SDS) company, which one has the most subsidiaries ?

Between Torch Trust company and Self-Directed Search (SDS) company, which one has the largest number of employees ?

Between Torch Trust and Self-Directed Search (SDS), which company holds both SOC 2 Type 1 certifications ?

Between Torch Trust and Self-Directed Search (SDS), which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Torch Trust or Self-Directed Search (SDS) ?

Which company is PCI DSS compliant — Torch Trust or Self-Directed Search (SDS) ?

Between Torch Trust and Self-Directed Search (SDS), which company complies with HIPAA regulations for healthcare data ?

Between Torch Trust and Self-Directed Search (SDS), which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-3261

Risk Information

CVE-2025-12421

Risk Information

CVE-2025-12559

Risk Information

CVE-2025-13765

CVE-2025-13758