Comparison Overview

Tower Optical Corporation

VS

Gravotech Polska

Tower Optical Corporation

3600 S Congress Ave, Boynton Beach, Florida, 33426, US
Last Update: 2025-11-27
View Profile
Between 750 and 799
http://www.toweroptical.com

Tower Optical Corporation is a premier manufacturer and producer of high quality precision optics and assemblies. Its stock and "build to spec" custom products are used in leading-edge photonics technology, electro-optics, lasers, telecommunications, medical instruments, optical imaging and optical computing, and military systems. Products include Crystal Quartz Waveplates, Achromatic Waveplates (retarders), lenses, filters, polarizers, prisms, beamsplitters, laser windows, laser mirrors and optical flats. Optical assembly is also available. Our customers represent a broad variety of companies and industries including military, aircraft, aerospace, medical, university researchers and key U.S. Department of Defense contractors. We are registered with the U.S. State Department to obtain export licenses as required, and is ITAR compliant. Tower Optical Corporation is a Certified "Service Disabled Veteran Owned Small Business" (SDVOSB) ISO 9001-2008 certified. We are also members of OSA, Optical Society of America, SPIE, APOMA .and an Industrial Affiliate at CREOL, The School of Optics at The University of Central Florida (UCF)..

NAICS: None
NAICS Definition:
Employees: 28
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Gravotech Polska

None
Last Update: 2025-11-28
Between 750 and 799
http://www.gravotech.pl

GRAVOTECH GROUP: WORLD NUMBER 1 IN PERMANENT MARKING The Gravotech group is the worldwide leader in the design, manufacture and distribution of innovative solutions for engraving, marking and artistic modelling. Gravotech has over 900 employees in over 100 countries. The group boasts a vast international network: 28 subsidiaries and 300 distributors work alongside its 60,000 international customers, assisting them with their local or global issues. An international presence and innovation are the company’s anchor points. It devotes 5% of turnover to investment in Research & Development. This reinvestment strategy means Gravotech is able to offer complete solutions, covering the needs and activities of every customer in a tailored and unique way. Its offer is built around four brands: Type3, Propen, Technifor and Gravograph. These brands cover four key technologies (laser, mechanical engraving, scribing and micropercussion) supplemented by a wide range of consumables and software solutions. Gravotech places the quality of its solutions at the very centre of its organisation. The group has been awarded ISO 9001 certification by recognised and accredited bodies. This standard signals that this global supplier can offer customers solutions that are tailored to their needs at the very highest levels of service and quality.

NAICS: None
NAICS Definition: Others
Employees: 4
Subsidiaries: 12
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/tower-optical.jpeg
Tower Optical Corporation
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/gravotech-polska.jpeg
Gravotech Polska
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Tower Optical Corporation
100%
Compliance Rate
0/4 Standards Verified
Gravotech Polska
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Mechanical Or Industrial Engineering Industry Average (This Year)

No incidents recorded for Tower Optical Corporation in 2025.

Incidents vs Mechanical Or Industrial Engineering Industry Average (This Year)

No incidents recorded for Gravotech Polska in 2025.

Incident History — Tower Optical Corporation (X = Date, Y = Severity)

Tower Optical Corporation cyber incidents detection timeline including parent company and subsidiaries

Incident History — Gravotech Polska (X = Date, Y = Severity)

Gravotech Polska cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/tower-optical.jpeg
Tower Optical Corporation
Incidents

No Incident

https://images.rankiteo.com/companyimages/gravotech-polska.jpeg
Gravotech Polska
Incidents

No Incident

FAQ

Tower Optical Corporation company demonstrates a stronger AI Cybersecurity Score compared to Gravotech Polska company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Gravotech Polska company has disclosed a higher number of cyber incidents compared to Tower Optical Corporation company.

In the current year, Gravotech Polska company and Tower Optical Corporation company have not reported any cyber incidents.

Neither Gravotech Polska company nor Tower Optical Corporation company has reported experiencing a ransomware attack publicly.

Neither Gravotech Polska company nor Tower Optical Corporation company has reported experiencing a data breach publicly.

Neither Gravotech Polska company nor Tower Optical Corporation company has reported experiencing targeted cyberattacks publicly.

Neither Tower Optical Corporation company nor Gravotech Polska company has reported experiencing or disclosing vulnerabilities publicly.

Neither Tower Optical Corporation nor Gravotech Polska holds any compliance certifications.

Neither company holds any compliance certifications.

Gravotech Polska company has more subsidiaries worldwide compared to Tower Optical Corporation company.

Tower Optical Corporation company employs more people globally than Gravotech Polska company, reflecting its scale as a Mechanical Or Industrial Engineering.

Neither Tower Optical Corporation nor Gravotech Polska holds SOC 2 Type 1 certification.

Neither Tower Optical Corporation nor Gravotech Polska holds SOC 2 Type 2 certification.

Neither Tower Optical Corporation nor Gravotech Polska holds ISO 27001 certification.

Neither Tower Optical Corporation nor Gravotech Polska holds PCI DSS certification.

Neither Tower Optical Corporation nor Gravotech Polska holds HIPAA certification.

Neither Tower Optical Corporation nor Gravotech Polska holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss4
Base: 6.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description

Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.

Published
Date
2025-11-27
Updated
Date
2025-11-27
References
Description

Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.

Published
Date
2025-11-27
Updated
Date
2025-11-27
References