Comparison Overview

Nothing

John Street, London, GB

Last Update: 2026-04-01

Between 750 and 799

Nothing exists to make tech feel exciting again. We’re building a different kind of company, one that puts design, emotion, and human creativity at the heart of everything we do. From the way our products look to how they sound, feel, and function, we care about the details that make technology not just useful, but inspiring. This is a place for the curious. The creators. The ones who ask why not and mean it. If you're drawn to bold ideas, fast moves, and work that actually makes you feel something, you’ll fit right in. We're not here to follow the rules. We're here to make better ones. Founded in London in 2020, Nothing is a design-led tech company building an alternative to the industry giants. Our products, from award-winning smartphones to expressive audio and wearables, blend iconic design with intuitive engineering to put people and creativity back at the centre of consumer tech. Backed by GV (Google Ventures), EQT Ventures, C Ventures, and influential investors like Tony Fadell (iPod), Casey Neistat, and Kevin Lin (Twitch), we’ve grown from startup to global challenger in just a few years.

NAICS: 513

NAICS Definition: Others

Employees: 28,896

Subsidiaries: 0

12-month incidents

1

Known data breaches

0

Attack type number

1

View Profile

eBay

2025 Hamilton Avenue, San Jose, CA, US, 95125

Last Update: 2026-04-02

Between 800 and 849

https://www.ebayinc.com/

At eBay, we create pathways to connect millions of sellers and buyers in more than 190 markets around the world. Our technology empowers our customers, providing everyone the opportunity to grow and thrive — no matter who they are or where they are in the world. And the ripple effect of our work creates waves of change for our customers, our company, our communities and our planet.

NAICS: 513

NAICS Definition: Others

Employees: 18,609

Subsidiaries: 10

12-month incidents

0

Known data breaches

1

Attack type number

1

Nothing

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

eBay

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Technology, Information and Internet Industry Average (This Year)

Nothing has 39.02% fewer incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs Technology, Information and Internet Industry Average (This Year)

No incidents recorded for eBay in 2026.

Incident History — Nothing (X = Date, Y = Severity)

Nothing cyber incidents detection timeline including parent company and subsidiaries

Incident History — eBay (X = Date, Y = Severity)

eBay cyber incidents detection timeline including parent company and subsidiaries

Nothing

Incidents

Date Detected: 1/2026

Type:Vulnerability

Attack Vector: Physical Access

Blog: Blog

eBay

Incidents

Date Detected: 12/2017

Type:Breach

Blog: Blog

eBay company demonstrates a stronger AI Cybersecurity Score compared to Nothing company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Nothing and eBay have experienced a similar number of publicly disclosed cyber incidents.

In the current year, Nothing company has reported more cyber incidents than eBay company.

Neither eBay company nor Nothing company has reported experiencing a ransomware attack publicly.

eBay company has disclosed at least one data breach, while Nothing company has not reported such incidents publicly.

Neither eBay company nor Nothing company has reported experiencing targeted cyberattacks publicly.

Nothing company has disclosed at least one vulnerability, while eBay company has not reported such incidents publicly.

Neither Nothing nor eBay holds any compliance certifications.

Neither company holds any compliance certifications.

eBay company has more subsidiaries worldwide compared to Nothing company.

Nothing company employs more people globally than eBay company, reflecting its scale as a Technology, Information and Internet.

Neither Nothing nor eBay holds SOC 2 Type 1 certification.

Neither Nothing nor eBay holds SOC 2 Type 2 certification.

Neither Nothing nor eBay holds ISO 27001 certification.

Neither Nothing nor eBay holds PCI DSS certification.

Neither Nothing nor eBay holds HIPAA certification.

Neither Nothing nor eBay holds GDPR certification.

Description

A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss2

Base: 5.0

Severity: LOW

AV:N/AC:L/Au:N/C:N/I:N/A:P

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

cvss4

Base: 5.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Nothing

VS

eBay

Nothing

eBay

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Technology, Information and Internet Industry Average (This Year)

Incidents vs Technology, Information and Internet Industry Average (This Year)

Incident History — Nothing (X = Date, Y = Severity)

Incident History — eBay (X = Date, Y = Severity)

Notable Incidents

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Nothing

VS

eBay

Nothing

eBay

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Technology, Information and Internet Industry Average (This Year)

Incidents vs Technology, Information and Internet Industry Average (This Year)

Incident History — Nothing (X = Date, Y = Severity)

Incident History — eBay (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Vulnerability TANKRANOTMEDCOI1773311566

🔒 Incident : Breach EBA1722323

FAQ

Between Nothing company and eBay company, which one has the best AI Cybersecurity Score ?

Between Nothing company and eBay company, which one has experienced more cyber incidents in the past ?

Between Nothing company and eBay company, which one has experienced more cyber incidents this year ?

Between Nothing company and eBay company, which one has experienced at least one ransomware attack ?

Between Nothing company and eBay company, which one has experienced at least one data breach ?

Between Nothing company and eBay company, which one has experienced at least one targeted cyberattack ?

Between Nothing company and eBay company, which one has experienced at least one vulnerability ?

Between Nothing company and eBay company, which one holds the most compliance certifications ?

Between Nothing company and eBay company, which one holds the fewest compliance certifications ?

Between Nothing company and eBay company, which one has the most subsidiaries ?

Between Nothing company and eBay company, which one has the largest number of employees ?

Between Nothing and eBay, which company holds both SOC 2 Type 1 certifications ?

Between Nothing and eBay, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Nothing or eBay ?

Which company is PCI DSS compliant — Nothing or eBay ?

Between Nothing and eBay, which company complies with HIPAA regulations for healthcare data ?

Between Nothing and eBay, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information