Excellent
Blvd. Chefchaouni, Rue E Rte. 110, Ain Sebaa, Casablanca, 20250, Morocco ()212 0522 34 53 00, 212 0522 35 45 80 fax,
Excellent
Atlanta-based GoTo Foods (formerly known as Focus Brands) is a leading developer of global multi-channel foodservice brands. As of December 31, 2023, GoTo Foods, through its affiliate brands, is the franchisor and operator of more than 6,700 restaurants, cafes, ice cream shoppes, and bakeries in all 50 states and over 60 countries and territories under the Auntie Anne’s®, Carvel®, Cinnabon®, Jamba®, Moe’s Southwest Grill®, McAlister’s Deli®, and Schlotzsky’s® brand names, as well as the Seattle’s Best Coffee® brand on certain military bases and in certain international markets. GoTo Foods is proud to be Certified™ by Great Place To Work®, the most definitive “employer-of-choice” recognition and the only recognition based entirely on what employees report about their workplace experience. Please visit www.gotofoods.com to learn more. As a leading developer of iconic food-service brands around the globe, we know our company is only as strong as our people. And that’s why we’re committed to providing our associates with a work environment that encourages and supports innovation, collaboration, and fun! From our unique family culture to our focus on personal development, a career with GoTo Foods is anything but ordinary. We rely on the unique attributes and experiences each of our associates has to offer, we remain focused on providing every individual with continuous opportunities to grow their skills, develop their talents, and unlock their potential as part of a collaborative and supportive team. We’re unleashing the power of our brands with the passion of our people – and we want you to join us!
Security & Compliance Standards Overview
No incidents recorded for Bimo in 2025.
No incidents recorded for GoTo Foods in 2025.
Bimo cyber incidents detection timeline including parent company and subsidiaries
GoTo Foods cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in The Wikimedia Foundation MediaWiki Cargo extension allows SQL Injection.This issue affects MediaWiki Cargo extension: 1.39, 1.43, 1.44.
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation MediaWiki QuizGame extension allows Stored XSS.This issue affects MediaWiki QuizGame extension: 1.39, 1.43, 1.44.
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation MediaWiki PollNY extension allows Stored XSS.This issue affects MediaWiki PollNY extension: 1.39, 1.43, 1.44.
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation MediaWiki WebAuthn extension allows Stored XSS.This issue affects MediaWiki WebAuthn extension: 1.39, 1.43, 1.44.
pyquokka is a framework for making data lakes work for time series. In versions 0.3.1 and prior, the FlightServer class directly uses pickle.loads() to deserialize action bodies received from Flight clients without any sanitization or validation in the do_action() method. The vulnerable code is located in pyquokka/flight.py at line 283 where arbitrary data from Flight clients is directly passed to pickle.loads(). When FlightServer is configured to listen on 0.0.0.0, this allows attackers across the entire network to perform arbitrary remote code execution by sending malicious pickled payloads through the set_configs action. Additional vulnerability points exist in the cache_garbage_collect, do_put, and do_get functions where pickle.loads is used to deserialize untrusted remote data.
