Comparison Overview

Kohl's

N56 W17000 Ridgewood Dr, Menomonee Falls, 53051, US

Last Update: 2026-04-01

Between 750 and 799

http://careers.kohls.com

Kohl’s is a leading omnichannel retailer with more than 1,100 stores in 49 states. Kohl's business is built on a solid foundation of more than 60 million customers, an unmatched brand portfolio, industry-leading loyalty and Kohl's Card programs, a convenient and accessible nationwide store footprint, and large digital business on Kohls.com and the Kohl's mobile app.

NAICS: 43

NAICS Definition: Retail Trade

Employees: 54,385

Subsidiaries: 1

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

Conad

Bologna, 40100, IT

Last Update: 2026-04-01

Between 750 and 799

http://www.conad.it

PERSONE OLTRE LE COSE. Conad è una storia fatta di imprenditori, commercianti, clienti e comunità. Un lungo viaggio che inizia nella metà degli anni ’60: nel 1962 nasce a Bologna il Consorzio Nazionale Dettaglianti, una società cooperativa a responsabilità limitata costituita da 14 gruppi d’acquisto e 420 soci dettaglianti. Conad rappresenta un’azienda che ha sempre promosso l’associazionismo, modello che ancora oggi è il tratto distintivo nel panorama della grande distribuzione. Il nostro successo è anche quello raggiunto grazie imprenditori che hanno scelto liberamente di mettersi assieme nella consapevolezza del ruolo centrale della persona, delle sue ambizioni e dell’importanza di valorizzarne le potenzialità. La nostra offerta nasce dal nostro costante ascolto della comunità con la quale, attraverso la nostra prossimità al territorio, dialoghiamo ogni giorno per conoscerne le esigenze e i bisogni. 6 cooperative, 2.300 soci e i 3.174 punti vendita: questa è Conad oggi. Un’azienda che da sempre mette in primo piano le persone, oltre le cose.

NAICS: 43

NAICS Definition: Retail Trade

Employees: 12,798

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

Kohl's

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Conad

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Retail Industry Average (This Year)

No incidents recorded for Kohl's in 2026.

Incidents vs Retail Industry Average (This Year)

No incidents recorded for Conad in 2026.

Incident History — Kohl's (X = Date, Y = Severity)

Kohl's cyber incidents detection timeline including parent company and subsidiaries

Incident History — Conad (X = Date, Y = Severity)

Conad cyber incidents detection timeline including parent company and subsidiaries

Kohl's

Incidents

No Incident

Conad

Incidents

No Incident

Conad company demonstrates a stronger AI Cybersecurity Score compared to Kohl's company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Conad company has disclosed a higher number of cyber incidents compared to Kohl's company.

In the current year, Conad company and Kohl's company have not reported any cyber incidents.

Neither Conad company nor Kohl's company has reported experiencing a ransomware attack publicly.

Neither Conad company nor Kohl's company has reported experiencing a data breach publicly.

Neither Conad company nor Kohl's company has reported experiencing targeted cyberattacks publicly.

Neither Kohl's company nor Conad company has reported experiencing or disclosing vulnerabilities publicly.

Neither Kohl's nor Conad holds any compliance certifications.

Neither company holds any compliance certifications.

Kohl's company has more subsidiaries worldwide compared to Conad company.

Kohl's company employs more people globally than Conad company, reflecting its scale as a Retail.

Neither Kohl's nor Conad holds SOC 2 Type 1 certification.

Neither Kohl's nor Conad holds SOC 2 Type 2 certification.

Neither Kohl's nor Conad holds ISO 27001 certification.

Neither Kohl's nor Conad holds PCI DSS certification.

Neither Kohl's nor Conad holds HIPAA certification.

Neither Kohl's nor Conad holds GDPR certification.

Description

A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss2

Base: 5.0

Severity: LOW

AV:N/AC:L/Au:N/C:N/I:N/A:P

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

cvss4

Base: 5.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Kohl's

VS

Conad

Kohl's

Conad

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Retail Industry Average (This Year)

Incidents vs Retail Industry Average (This Year)

Incident History — Kohl's (X = Date, Y = Severity)

Incident History — Conad (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Kohl's

VS

Conad

Kohl's

Conad

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Retail Industry Average (This Year)

Incidents vs Retail Industry Average (This Year)

Incident History — Kohl's (X = Date, Y = Severity)

Incident History — Conad (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Between Kohl's company and Conad company, which one has the best AI Cybersecurity Score ?

Between Kohl's company and Conad company, which one has experienced more cyber incidents in the past ?

Between Kohl's company and Conad company, which one has experienced more cyber incidents this year ?

Between Kohl's company and Conad company, which one has experienced at least one ransomware attack ?

Between Kohl's company and Conad company, which one has experienced at least one data breach ?

Between Kohl's company and Conad company, which one has experienced at least one targeted cyberattack ?

Between Kohl's company and Conad company, which one has experienced at least one vulnerability ?

Between Kohl's company and Conad company, which one holds the most compliance certifications ?

Between Kohl's company and Conad company, which one holds the fewest compliance certifications ?

Between Kohl's company and Conad company, which one has the most subsidiaries ?

Between Kohl's company and Conad company, which one has the largest number of employees ?

Between Kohl's and Conad, which company holds both SOC 2 Type 1 certifications ?

Between Kohl's and Conad, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Kohl's or Conad ?

Which company is PCI DSS compliant — Kohl's or Conad ?

Between Kohl's and Conad, which company complies with HIPAA regulations for healthcare data ?

Between Kohl's and Conad, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information