Comparison Overview

Tencent

Tencent Seafront Towers, Nanshan District, Shenzhen, Guangdong, CN

Last Update: 2026-04-02

Between 700 and 749

https://www.tencent.com/en-us/

Tencent is a world-leading internet and technology company that develops innovative products and services to improve the quality of life of people around the world. Founded in 1998 with its headquarters in Shenzhen, China, Tencent's guiding principle is to use technology for good. Our communication and social services connect more than one billion people around the world, helping them to keep in touch with friends and family, access transportation, pay for daily necessities, and even be entertained. Tencent also publishes some of the world's most popular video games and other high-quality digital content, enriching interactive entertainment experiences for people around the globe. Tencent also offers a range of services such as cloud computing, advertising, FinTech, and other enterprise services to support our clients' digital transformation and business growth. Tencent has been listed on the Stock Exchange of Hong Kong since 2004.

NAICS: 5112

NAICS Definition: Software Publishers

Employees: 89,363

Subsidiaries: 0

12-month incidents

0

Known data breaches

2

Attack type number

1

View Profile

ByteDance

China, 100098, CN

Last Update: 2026-03-28

Between 800 and 849

https://job.bytedance.com/en/#/

ByteDance is a global incubator of platforms at the cutting edge of commerce, content, entertainment and enterprise services - over 2.5bn people interact with ByteDance products including TikTok. Creation is the core of ByteDance's purpose. Our products are built to help imaginations thrive. This is doubly true of the teams that make our innovations possible. Together, we inspire creativity and enrich life - a mission we aim towards achieving every day. At ByteDance, we create together and grow together. That's how we drive impact - for ourselves, our company, and the users we serve. We are committed to building a safe, healthy and positive online environment for all our users. We have over 110,000 employees based in more than 30 countries globally. Join us.

NAICS: 5112

NAICS Definition: Software Publishers

Employees: 46,475

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

1

Tencent

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

ByteDance

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for Tencent in 2026.

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for ByteDance in 2026.

Incident History — Tencent (X = Date, Y = Severity)

Tencent cyber incidents detection timeline including parent company and subsidiaries

Incident History — ByteDance (X = Date, Y = Severity)

ByteDance cyber incidents detection timeline including parent company and subsidiaries

Tencent

Incidents

Date Detected: 1/2025

Type:Breach

Attack Vector: Compilation of Breaches (COB)

Motivation: Credential harvesting, cybercrime, initial access brokerage

Blog: Blog

Date Detected: 6/2017

Type:Breach

Blog: Blog

ByteDance

Incidents

Date Detected: 1/2025

Type:Cyber Attack

Motivation: Regulatory Compliance

Blog: Blog

ByteDance company demonstrates a stronger AI Cybersecurity Score compared to Tencent company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Tencent company has faced a higher number of disclosed cyber incidents historically compared to ByteDance company.

In the current year, ByteDance company and Tencent company have not reported any cyber incidents.

Neither ByteDance company nor Tencent company has reported experiencing a ransomware attack publicly.

Tencent company has disclosed at least one data breach, while the other ByteDance company has not reported such incidents publicly.

ByteDance company has reported targeted cyberattacks, while Tencent company has not reported such incidents publicly.

Neither Tencent company nor ByteDance company has reported experiencing or disclosing vulnerabilities publicly.

Neither Tencent nor ByteDance holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Tencent company nor ByteDance company has publicly disclosed detailed information about the number of their subsidiaries.

Tencent company employs more people globally than ByteDance company, reflecting its scale as a Software Development.

Neither Tencent nor ByteDance holds SOC 2 Type 1 certification.

Neither Tencent nor ByteDance holds SOC 2 Type 2 certification.

Neither Tencent nor ByteDance holds ISO 27001 certification.

Neither Tencent nor ByteDance holds PCI DSS certification.

Neither Tencent nor ByteDance holds HIPAA certification.

Neither Tencent nor ByteDance holds GDPR certification.

Description

A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss2

Base: 5.0

Severity: LOW

AV:N/AC:L/Au:N/C:N/I:N/A:P

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

cvss4

Base: 5.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published

Date

2026-04-01

Updated

Date

2026-04-01

Risk Information

cvss3

Base: 7.8

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Tencent

VS

ByteDance

Tencent

ByteDance

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — Tencent (X = Date, Y = Severity)

Incident History — ByteDance (X = Date, Y = Severity)

Notable Incidents

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Tencent

VS

ByteDance

Tencent

ByteDance

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

Incidents vs Software Development Industry Average (This Year)

Incident History — Tencent (X = Date, Y = Severity)

Incident History — ByteDance (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Breach TENMYSTWITENCANADODEEFRIUNIBRA1769520245

🔒 Incident : Breach TEN1292112102725

🔒 Incident : Cyber Attack BYT000012225

FAQ

Between Tencent company and ByteDance company, which one has the best AI Cybersecurity Score ?

Between Tencent company and ByteDance company, which one has experienced more cyber incidents in the past ?

Between Tencent company and ByteDance company, which one has experienced more cyber incidents this year ?

Between Tencent company and ByteDance company, which one has experienced at least one ransomware attack ?

Between Tencent company and ByteDance company, which one has experienced at least one data breach ?

Between Tencent company and ByteDance company, which one has experienced at least one targeted cyberattack ?

Between Tencent company and ByteDance company, which one has experienced at least one vulnerability ?

Between Tencent company and ByteDance company, which one holds the most compliance certifications ?

Between Tencent company and ByteDance company, which one holds the fewest compliance certifications ?

Between Tencent company and ByteDance company, which one has the most subsidiaries ?

Between Tencent company and ByteDance company, which one has the largest number of employees ?

Between Tencent and ByteDance, which company holds both SOC 2 Type 1 certifications ?

Between Tencent and ByteDance, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Tencent or ByteDance ?

Which company is PCI DSS compliant — Tencent or ByteDance ?

Between Tencent and ByteDance, which company complies with HIPAA regulations for healthcare data ?

Between Tencent and ByteDance, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2026-5314

Risk Information

CVE-2026-32929

Risk Information

CVE-2026-32928

Risk Information

CVE-2026-32927

Risk Information

CVE-2026-32926

Risk Information