Comparison Overview

Waterwell

VS

The New Group

Waterwell

330 W 42nd St, New York, NY, 10036, US
Last Update: 2025-12-09
View Profile
Between 750 and 799
http://waterwell.org/

Founded in 2002 by Arian Moayed and Tom Ridgely, Waterwell is dedicated to the creation of new work and bold reinterpretation of classics. The company’s special blend of music, theater and social dialog has been nominated for three IT awards, a Drama Desk, a New York Magazine Culture Award and Village Voice Best of NYC. Recent work includes the resurrection of lost WWII-era Frank Loesser musicals Blueprint Specials, featuring civilian and military performers onboard the former USS Intrepid (Public Theater’s Under the Radar Festival); as well as a dual-language (English/Farsi) adaptation of Hamlet performed by a cast predominantly of Middle Eastern and South Asian actors. The company also believes strongly in the power of the arts in youth development. Its acclaimed educational arm, the Waterwell Drama Program, has delivered – in partnership with the Professional Performing Arts School (PPAS) – top-quality, year-round, in-school theater training to over 200 NYC public school students annually since 2010. Partnerships with Manhattan Youth, the New School and others provide rich artmaking experiences to dozens of additional students each year, from middle school through college.

NAICS: 7111
NAICS Definition: Performing Arts Companies
Employees: 31
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

The New Group

410 West 42nd Street, New York, NY, 10036, US
Last Update: 2025-12-10
Between 750 and 799
http://www.thenewgroup.org

The New Group, led by founding Artistic Director Scott Elliott and Executive Director Adam Bernstein, is an award-winning, artist-driven company with a commitment to developing and producing powerful, contemporary theater. While constantly evolving, we strive to maintain an ensemble approach to all our work and an articulated style of emotional immediacy in our acting and productions. In this way, we seek a theater that is adventurous, stimulating and most importantly "now"​, a true forum for the present culture. Founded in 1995, The New Group was born of Artistic Director Scott Elliott's desire to develop a place for artists to experiment, take risks, and learn from each other without the pressures of commercial theater. Notable productions include Ecstasy, This is Our Youth, Aunt Dan and Lemon, Hurlyburly, Abigail's Party, Rafta, Rafta..., The Starry Messenger, A Lie of the Mind, Blood From a Stone, Marie and Bruce, The Jacksonian, Sticks and Bones, The Spoils, Steve and Buried Child. In over twenty years, we have received nearly 100 awards and nominations for excellence. The New Group's first musical, Avenue Q, won three Tony Awards. The New Group and Scott Elliott were honored with a 2010-2011 Drama Desk Special Award "for presenting contemporary new voices, and for uncompromisingly raw and powerful productions."​ In addition, the organization’s New Group/New Works play and musical development program champions original works by emerging and established authors. The New Group also operates a variety of theater education programs that provide opportunities for artistically inclined high school, college, and adult students.

NAICS: 711
NAICS Definition:
Employees: 39
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/waterwell.jpeg
Waterwell
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/the-new-group_3.jpeg
The New Group
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Waterwell
100%
Compliance Rate
0/4 Standards Verified
The New Group
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Performing Arts Industry Average (This Year)

No incidents recorded for Waterwell in 2025.

Incidents vs Performing Arts Industry Average (This Year)

No incidents recorded for The New Group in 2025.

Incident History — Waterwell (X = Date, Y = Severity)

Waterwell cyber incidents detection timeline including parent company and subsidiaries

Incident History — The New Group (X = Date, Y = Severity)

The New Group cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/waterwell.jpeg
Waterwell
Incidents

No Incident

https://images.rankiteo.com/companyimages/the-new-group_3.jpeg
The New Group
Incidents

No Incident

FAQ

Waterwell company demonstrates a stronger AI Cybersecurity Score compared to The New Group company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, The New Group company has disclosed a higher number of cyber incidents compared to Waterwell company.

In the current year, The New Group company and Waterwell company have not reported any cyber incidents.

Neither The New Group company nor Waterwell company has reported experiencing a ransomware attack publicly.

Neither The New Group company nor Waterwell company has reported experiencing a data breach publicly.

Neither The New Group company nor Waterwell company has reported experiencing targeted cyberattacks publicly.

Neither Waterwell company nor The New Group company has reported experiencing or disclosing vulnerabilities publicly.

Neither Waterwell nor The New Group holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Waterwell company nor The New Group company has publicly disclosed detailed information about the number of their subsidiaries.

The New Group company employs more people globally than Waterwell company, reflecting its scale as a Performing Arts.

Neither Waterwell nor The New Group holds SOC 2 Type 1 certification.

Neither Waterwell nor The New Group holds SOC 2 Type 2 certification.

Neither Waterwell nor The New Group holds ISO 27001 certification.

Neither Waterwell nor The New Group holds PCI DSS certification.

Neither Waterwell nor The New Group holds HIPAA certification.

Neither Waterwell nor The New Group holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 8.1
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
References
Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 2.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
References
Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
References
Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 5.8
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
References