Comparison Overview

BioLife Plasma Services

VS

Viatris

BioLife Plasma Services

None, None, Bannockburn , Illinois , US, None
Last Update: 2026-01-25
View Profile
Between 700 and 749
http://www.biolifeplasma.com

Every day at BioLife, we feel good knowing that what we do helps improve the lives of patients with rare diseases. While you focus on our donors, we’ll support you. We offer a purpose you can believe in, a team you can count on, opportunities for career growth, and a comprehensive benefits program, all in a fast-paced, friendly environment.

NAICS: 3254
NAICS Definition: Pharmaceutical and Medicine Manufacturing
Employees: 3,509
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
1
View Profile

Viatris

Pittsburgh, US
Last Update: 2026-01-18
Between 750 and 799
https://www.viatris.com/en

Viatris Inc. (NASDAQ: VTRS) is a global healthcare company uniquely positioned to bridge the traditional divide between generics and brands, combining the best of both to more holistically address healthcare needs globally. With a mission to empower people worldwide to live healthier at every stage of life, we provide access at scale. In 2022 alone, we supplied high-quality medicines to approximately 1 billion patients around the world. With our exceptionally extensive and diverse portfolio of medicines, a one-of-a-kind global supply chain designed to reach more people when and where they need them, and the scientific expertise to address some of the world’s most enduring health challenges, access takes on deep meaning at Viatris. We have the ability to touch all of life’s moments, from birth to end of life, acute conditions to chronic diseases. We are headquartered in the U.S., with global centers in Pittsburgh, Shanghai and Hyderabad, India Social Media Guidelines: https://newsroom.viatris.com/social-media-community-guidelines Investors: https://investor.viatris.com Corporate Social Responsibility: https://www.viatris.com/sustainability Connect with Viatris Instagram: https://www.instagram.com/viatrisinc X: https://www.x.com/viatrisinc Viatris and our recruiting firms will not ask for sensitive personal information, such as your social security number, date of birth or bank account details via text, email or social media. Additionally, Viatris representatives do not request payment or personal bank information nor send payment to purchase hardware on your own. Viatris.com is the primary source of all company job postings and authorized third-party career websites.

NAICS: 3254
NAICS Definition: Pharmaceutical and Medicine Manufacturing
Employees: 17,635
Subsidiaries: 1
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/biolifeplasmaservices.jpeg
BioLife Plasma Services
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/viatris.jpeg
Viatris
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
BioLife Plasma Services
100%
Compliance Rate
0/4 Standards Verified
Viatris
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Pharmaceutical Manufacturing Industry Average (This Year)

No incidents recorded for BioLife Plasma Services in 2026.

Incidents vs Pharmaceutical Manufacturing Industry Average (This Year)

No incidents recorded for Viatris in 2026.

Incident History — BioLife Plasma Services (X = Date, Y = Severity)

BioLife Plasma Services cyber incidents detection timeline including parent company and subsidiaries

Incident History — Viatris (X = Date, Y = Severity)

Viatris cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/biolifeplasmaservices.jpeg
BioLife Plasma Services
Incidents

Date Detected: 1/2024
Type:Breach
Attack Vector: Credential Stuffing
Blog: Blog
https://images.rankiteo.com/companyimages/viatris.jpeg
Viatris
Incidents

No Incident

FAQ

Viatris company demonstrates a stronger AI Cybersecurity Score compared to BioLife Plasma Services company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

BioLife Plasma Services company has historically faced a number of disclosed cyber incidents, whereas Viatris company has not reported any.

In the current year, Viatris company and BioLife Plasma Services company have not reported any cyber incidents.

Neither Viatris company nor BioLife Plasma Services company has reported experiencing a ransomware attack publicly.

BioLife Plasma Services company has disclosed at least one data breach, while the other Viatris company has not reported such incidents publicly.

Neither Viatris company nor BioLife Plasma Services company has reported experiencing targeted cyberattacks publicly.

Neither BioLife Plasma Services company nor Viatris company has reported experiencing or disclosing vulnerabilities publicly.

Neither BioLife Plasma Services nor Viatris holds any compliance certifications.

Neither company holds any compliance certifications.

Viatris company has more subsidiaries worldwide compared to BioLife Plasma Services company.

Viatris company employs more people globally than BioLife Plasma Services company, reflecting its scale as a Pharmaceutical Manufacturing.

Neither BioLife Plasma Services nor Viatris holds SOC 2 Type 1 certification.

Neither BioLife Plasma Services nor Viatris holds SOC 2 Type 2 certification.

Neither BioLife Plasma Services nor Viatris holds ISO 27001 certification.

Neither BioLife Plasma Services nor Viatris holds PCI DSS certification.

Neither BioLife Plasma Services nor Viatris holds HIPAA certification.

Neither BioLife Plasma Services nor Viatris holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Typemill is a flat-file, Markdown-based CMS designed for informational documentation websites. A reflected Cross-Site Scripting (XSS) exists in the login error view template `login.twig` of versions 2.19.1 and below. The `username` value can be echoed back without proper contextual encoding when authentication fails. An attacker can execute script in the login page context. This issue has been fixed in version 2.19.2.

Published
Date
2026-01-23
Updated
Date
2026-01-23
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
References
Description

A DOM-based Cross-Site Scripting (XSS) vulnerability exists in the DomainCheckerApp class within domain/script.js of Sourcecodester Domain Availability Checker v1.0. The vulnerability occurs because the application improperly handles user-supplied data in the createResultElement method by using the unsafe innerHTML property to render domain search results.

Published
Date
2026-01-23
Updated
Date
2026-01-23
References
Description

A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Modern Image Gallery App v1.0 within the gallery/upload.php component. The application fails to properly validate uploaded file contents. Additionally, the application preserves the user-supplied file extension during the save process. This allows an unauthenticated attacker to upload arbitrary PHP code by spoofing the MIME type as an image, leading to full system compromise.

Published
Date
2026-01-23
Updated
Date
2026-01-23
References
Description

A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at jailer startup, if the jailer is executed with root privileges. To mitigate this issue, users should upgrade to version v1.13.2 or 1.14.1 or above.

Published
Date
2026-01-23
Updated
Date
2026-01-23
Risk Information
cvss3
Base: 6.0
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
cvss4
Base: 6.0
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

An information disclosure vulnerability exists in the /srvs/membersrv/getCashiers endpoint of the Aptsys gemscms backend platform thru 2025-05-28. This unauthenticated endpoint returns a list of cashier accounts, including names, email addresses, usernames, and passwords hashed using MD5. As MD5 is a broken cryptographic function, the hashes can be easily reversed using public tools, exposing user credentials in plaintext. This allows remote attackers to perform unauthorized logins and potentially gain access to sensitive POS operations or backend functions.

Published
Date
2026-01-23
Updated
Date
2026-01-23
References