Comparison Overview

whynow

VS

PRISA

whynow

34-35 Eastcastle Street, LONDON, Greater London, W1W 8DW, GB
Last Update: 2025-03-10 (UTC)
Between 900 and 1000
http://www.whynowstudios.com

Excellent

Bringing you the best stories in the arts world, from the heart of the UK. Founded in 2019 by Gabriel Jagger, whynow is a multimedia company with an online magazine, production house, and e-commerce service - born from the desire to bring people the best, most unique, entertaining stories and news in the arts.

NAICS: 512
NAICS Definition:
Employees: 50
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

PRISA

Calle Gran Vía, 32 Madrid, Comunidad de Madrid 28013, ES
Last Update: 2025-05-06 (UTC)

Excellent

Between 900 and 1000
http://www.prisa.com

PRISA es la compañía líder en la creación y distribución de contenidos culturales, educativos, de información y entretenimiento en los mercados de habla española y portuguesa. Presente en 24 países, PRISA llega a millones de personas a través de sus marcas globales El País, LOS40, Santillana, W Radio o As. Como líder en prensa, televisión, radio hablada, musical y educación es uno de los principales grupos mediáticos del mundo hispano por la gran calidad de sus contenidos y por su voluntad de participar en la economía digital a través de la conectividad y la innovación de productos y servicios. Su presencia en Brasil y Portugal, y en el creciente mercado hispano de Estados Unidos, le abre un mercado global de más de 700 millones de personas. PRISA es uno de los principales grupos mediáticos del mundo hispano, situado a la vanguardia de las empresas de comunicación y educación. Con 152 millones de navegadores únicos* en todo el mundo, PRISA se sitúa a la vanguardia de las empresas de comunicación y educación con una sólida estrategia de distribución de contenidos, ofreciendo innovadoras propuestas a través de distintos formatos, canales y plataformas. * (Fuente: Adobe Omniture + Netscope, promedio anual enero-diciembre 2018) Redes Sociales: https://www.facebook.com/PRISA https://twitter.com/PRISA https://cadenaser.com/politica-de-rrss/

NAICS: 51211
NAICS Definition: Motion Picture and Video Production
Employees: 10,001+
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/whynow-ltd.jpeg
whynow
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/prisa.jpeg
PRISA
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
Compliance Summary
whynow
100%
Compliance Rate
0/4 Standards Verified
PRISA
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Media Production Industry Average (This Year)

No incidents recorded for whynow in 2025.

Incidents vs Media Production Industry Average (This Year)

No incidents recorded for PRISA in 2025.

Incident History — whynow (X = Date, Y = Severity)

whynow cyber incidents detection timeline including parent company and subsidiaries

Incident History — PRISA (X = Date, Y = Severity)

PRISA cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/whynow-ltd.jpeg
whynow
Incidents

No Incident

https://images.rankiteo.com/companyimages/prisa.jpeg
PRISA
Incidents

No Incident

FAQ

Both whynow company and PRISA company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, PRISA company has disclosed a higher number of cyber incidents compared to whynow company.

In the current year, PRISA company and whynow company have not reported any cyber incidents.

Neither PRISA company nor whynow company has reported experiencing a ransomware attack publicly.

Neither PRISA company nor whynow company has reported experiencing a data breach publicly.

Neither PRISA company nor whynow company has reported experiencing targeted cyberattacks publicly.

Neither whynow company nor PRISA company has reported experiencing or disclosing vulnerabilities publicly.

Neither whynow company nor PRISA company has publicly disclosed detailed information about the number of their subsidiaries.

whynow company employs more people globally than PRISA company, reflecting its scale as a Media Production.

Latest Global CVEs (Not Company-Specific)

Description

A weakness has been identified in bftpd up to 6.2. Impacted is the function expand_groups of the file options.c of the component Configuration File Handler. Executing manipulation can lead to heap-based buffer overflow. It is possible to launch the attack on the local host. Attacks of this nature are highly complex. The exploitability is considered difficult. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 3.5
Severity: HIGH
AV:L/AC:H/Au:S/C:P/I:P/A:P
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 2.0
Severity: HIGH
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in LogicalDOC Community Edition up to 9.2.1. This issue affects some unknown processing of the file /frontend.jsp of the component Add Contact Page. Performing manipulation of the argument First Name/Last Name/Company/Address/Phone/Mobile results in cross site scripting. Remote exploitation of the attack is possible. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 3.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in toeverything AFFiNE up to 0.24.1. This vulnerability affects unknown code of the component Avatar Upload Image Endpoint. Such manipulation leads to cross site scripting. The attack may be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 3.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was determined in givanz Vvveb up to 1.0.7.3. This affects the function Import of the file admin/controller/tools/import.php of the component Raw SQL Handler. This manipulation causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. Patch name: 52204b4a106b2fb02d16eee06a88a1f2697f9b35. It is recommended to apply a patch to fix this issue.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:N/AC:L/Au:M/C:P/I:P/A:P
cvss3
Base: 4.7
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability has been found in 70mai X200 up to 20251010. Affected by this vulnerability is an unknown functionality of the component HTTP Web Server. The manipulation leads to use of default credentials. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-10-19
Updated
Date
2025-10-19
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References