Excellent
Barking Irons is based out New York City, NY, United States.
Excellent
Our global house of brands unites the magic of Coach, Kate Spade New York and Stuart Weitzman. By intertwining different people and ideas, we push ourselves in our work and expand the bounds of possibility. Learn about our iconic brands: tapestry.com/our-brands Weโve grown by finding people dedicated to the dream all over the world. We hold ourselves to high standards in every material and process, and we embrace difference by design because diverse perspectives are at the heart of creativity. We find brilliance in the intersectionsโof beauty and function, of heritage and innovation, of accessibility and aspirationโwhich is how we bring together magic and logic in our craft. Find out about our people and employer priorities: tapestry.com/responsibility/our-people The result is that we stand taller together, elevating the best in our people and brands. We use our collective strengths to move our customers and empower our communities, to make the fashion industry sustainable, and to build a house thatโs equitable, inclusive, and diverse. Individually, our brands are iconic. Together, we can stretch whatโs possible. See our values and commitments to support our people, communities and planet: tapestry.com/responsibility __ Please Be Advised - Recruitment Scams: Tapestry and its brands will only reach out to interview, make an offer of employment or conduct onboarding activities for candidates who have applied through our careers site. If you find a job posting on a third-party job site, such as LinkedIn, please know that a legitimate posting will direct you to our careers site to apply. When interviewing for a position, the candidate experience will include live interaction, such as a video conference or phone call, with a Recruiter and/or company employee(s). Be aware of suspicious recruitment activity. If you think you are a victim of an employment scam, please visit the Federal Trade Commission website: https://www.consumer.ftc.gov/articles/0243-job-scams
Security & Compliance Standards Overview
No incidents recorded for Barking Irons in 2025.
No incidents recorded for Tapestry in 2025.
Barking Irons cyber incidents detection timeline including parent company and subsidiaries
Tapestry cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
Volto is a ReactJS-based frontend for the Plone Content Management System. Versions 16.34.0 and below, 17.0.0 through 17.22.1, 18.0.0 through 18.27.1, and 19.0.0-alpha.1 through 19.0.0-alpha.5, an anonymous user could cause the NodeJS server part of Volto to quit with an error when visiting a specific URL. This issue is fixed in versions 16.34.1, 17.22.2, 18.27.2 and 19.0.0-alpha.6.
Traccar is an open source GPS tracking system. Default installs of Traccar on Windows between versions 6.1- 6.8.1 and non default installs between versions 5.8 - 6.0 are vulnerable to unauthenticated local file inclusion attacks which can lead to leakage of passwords or any file on the file system including the Traccar configuration file. Versions 5.8 - 6.0 are only vulnerable if <entry key='web.override'>./override</entry> is set in the configuration file. Versions 6.1 - 6.8.1 are vulnerable by default as the web override is enabled by default. The vulnerable code is removed in version 6.9.0.
Stalwart is a mail and collaboration server. Versions 0.13.3 and below contain an unbounded memory allocation vulnerability in the IMAP protocol parser which allows remote attackers to exhaust server memory, potentially triggering the system's out-of-memory (OOM) killer and causing a denial of service. The CommandParser implementation enforces size limits on its dynamic buffer in most parsing states, but several state handlers omit these validation checks. This issue is fixed in version 0.13.4. A workaround for this issue is to implement rate limiting and connection monitoring at the network level, however this does not provide complete protection.
WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain a Broken Access Control vulnerability, identified in the get_relatorios_socios.php endpoint. This vulnerability allows unauthenticated attackers to directly access sensitive personal and financial information of members without requiring authentication or authorization. This issue is fixed in version 3.5.0.
WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain an Open Redirect vulnerability, identified in the control.php endpoint, specifically in the nextPage parameter (metodo=listarUmnomeClasse=FuncionarioControle). This vulnerability allows attackers to redirect users to arbitrary external domains, enabling phishing campaigns, malicious payload distribution, or user credential theft. This issue is fixed in version 3.5.0.
