Comparison Overview

Bottle Stop

VS

US Foods

Bottle Stop

163 Eastern Rd, South Melbourne, Victoria, 3205, AU
Last Update: 2025-03-12 (UTC)
Between 900 and 1000
https://www.bottle-stop.com.au

Excellent

Bottle Stop exists as your drinking destination for beers, bubbles and beyond, whether youโ€™re shopping in one of our local bottle shops (launching end of 2024!), browsing our website or via our handy app. Shop thousands of your favourite drinks in one place with great prices on the brands you love. Beer, wine, gin, tequila, whisky, bourbon, vodka, rum and more. You name it, weโ€™ve got it. All your trusted favourites, plus some old and rare stuff too. And weโ€™re all about making sure our customers get the best deals and feel the love with Bottle Stop Rewards. Youโ€™ll earn for every dollar you spend that can be redeemed on future purchases, with exclusive offers and early access to sales and special products. Owned by Paramount Retail, part of Australiaโ€™s largest family-owned independent liquor group, we know what makes a great drinking occasion - and weโ€™ll be waiting for you next time you need to top up.

NAICS: 722
NAICS Definition:
Employees: 5
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

US Foods

9399 W. Higgins Rd., Rosemont, IL, 60018, US
Last Update: 2025-03-05 (UTC)

Excellent

Between 900 and 1000
http://www.usfoods.com

US Foods is one of Americaโ€™s great food companies and a leading foodservice distributor, partnering with approximately 300,000 restaurants and foodservice operators to help their businesses succeed. With 28,000 associates and more than 70 locations, US Foods provides its customers with a broad and innovative food offering and a comprehensive suite of e-commerce, technology and business solutions. US Foods is headquartered in Rosemont, IL, and generates more than $28 billion in annual revenue. Visit usfoods.com to learn more. ------------ Rules of Engagement Statement: We are proud to support community engagement on the US Foods LinkedIn page, and we're excited to see your comments, photos and videos. Please note that the views expressed by the community do not necessarily reflect those of US Foods. Before posting, please take a moment to read our rules for community content. We reserve the right to remove content that violates these rules. 1. Don't break the law. Content that appears to break the law or that advocates for breaking the law also is not permitted. 2. Be polite and courteous to everyone, even those you disagree with. This also means you may not post anything that is threatening, harassing, abusive, bullying, discriminatory, profane, sexually explicit, obscene, violent, gruesome, or similarly objectionable. 3. Stay on topic for this community and dialogue. Off-topic content may include but is not limited to irrelevant or out of context material, spam, promotional content, and links to third-party sites. 4. Follow LinkedIn's Terms and Conditions. 5. All posts must be by a real person and from a real profile. Content from fake or anonymous profiles is not permitted. 6. Our employees must also follow all of our applicable policies and guidelines, including but not limited to our Code of Conduct and Electronic Social Networking Policy.

NAICS: 722
NAICS Definition: Food Services and Drinking Places
Employees: 22,772
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/boozebud.com.au.jpeg
Bottle Stop
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/usfoods.jpeg
US Foods
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
Bottle Stop
100%
Compliance Rate
0/4 Standards Verified
US Foods
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Food and Beverage Services Industry Average (This Year)

No incidents recorded for Bottle Stop in 2025.

Incidents vs Food and Beverage Services Industry Average (This Year)

No incidents recorded for US Foods in 2025.

Incident History โ€” Bottle Stop (X = Date, Y = Severity)

Bottle Stop cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” US Foods (X = Date, Y = Severity)

US Foods cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/boozebud.com.au.jpeg
Bottle Stop
Incidents

No Incident

https://images.rankiteo.com/companyimages/usfoods.jpeg
US Foods
Incidents

No Incident

FAQ

Both Bottle Stop company and US Foods company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, US Foods company has disclosed a higher number of cyber incidents compared to Bottle Stop company.

In the current year, US Foods company and Bottle Stop company have not reported any cyber incidents.

Neither US Foods company nor Bottle Stop company has reported experiencing a ransomware attack publicly.

Neither US Foods company nor Bottle Stop company has reported experiencing a data breach publicly.

Neither US Foods company nor Bottle Stop company has reported experiencing targeted cyberattacks publicly.

Neither Bottle Stop company nor US Foods company has reported experiencing or disclosing vulnerabilities publicly.

Neither Bottle Stop company nor US Foods company has publicly disclosed detailed information about the number of their subsidiaries.

US Foods company employs more people globally than Bottle Stop company, reflecting its scale as a Food and Beverage Services.

Latest Global CVEs (Not Company-Specific)

Description

Mastra is a Typescript framework for building AI agents and assistants. Versions 0.13.8 through 0.13.20-alpha.0 are vulnerable to a Directory Traversal attack that results in the disclosure of directory listings. The code contains a security check to prevent path traversal for reading file contents, but this check is effectively bypassed by subsequent logic that attempts to find directory suggestions. An attacker can leverage this flaw to list the contents of arbitrary directories on the user's filesystem, including the user's home directory, exposing sensitive information about the file system's structure. This issue is fixed in version 0.13.20.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
References
Description

KUNO CMS is a fully deployable full-stack blog application. Versions 1.3.13 and below contain validation flaws in its file upload functionality that can be exploited for stored XSS. The upload endpoint only validates file types based on Content-Type headers, lacks file content analysis and extension whitelist restrictions, allowing attackers to upload SVG files containing malicious scripts (disguised as images). When users access the uploaded resource pages, arbitrary JavaScript executes in their browsers. This issue is fixed in version 1.3.14.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
References
Description

Minecraft RCON Terminal is a VS Code extension that streamlines Minecraft server management. Versions 0.1.0 through 2.0.6 stores passwords using VS Code's configuration API which writes to settings.json in plaintext. This issue is fixed in version 2.1.0.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss4
Base: 6.6
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Anyquery is an SQL query engine built on top of SQLite. Versions 0.4.3 and below allow attackers who have already gained access to localhost, even with low privileges, to use the http server through the port unauthenticated, and access private integration data like emails, without any warning of a foreign login from the provider. This issue is fixed in version 0.4.4.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss3
Base: 7.7
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
References
Description

DataChain is a Python-based AI-data warehouse for transforming and analyzing unstructured data. Versions 0.34.1 and below allow for deseriaization of untrusted data because of the way the DataChain library reads serialized objects from environment variables (such as DATACHAIN__METASTORE and DATACHAIN__WAREHOUSE) in the loader.py module. An attacker with the ability to set these environment variables can trigger code execution when the application loads. This issue is fixed in version 0.34.2.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss3
Base: 2.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
References