Excellent
BurBak Plastics specializes in high heat engineering plastics and highly toleranced, highgrade materials for runs of 500 to 5 million or more.
Excellent
At Berry Global Group, Inc. (NYSE: BERY), we create innovative packaging solutions that we believe make life better for people and the planet. We do this every day by leveraging our unmatched global capabilities, sustainability leadership, and deep innovation expertise to serve customers of all sizes around the world. Harnessing the strength in our diversity and industry-leading talent of over 40,000 global employees across more than 250 locations, we partner with customers to develop, design, and manufacture innovative products with an eye toward the circular economy. The challenges we solve and the innovations we pioneer benefit our customers at every stage of their journey. For more information, visit our website at berryglobal.com. Notice to Berry Global Candidates for Employment: We will never ask for money during the application, recruitment, or onboarding process. If you come across this during your job search, then it may be an individual falsifying their information.
Security & Compliance Standards Overview
No incidents recorded for Burbak Co in 2025.
No incidents recorded for Berry Global, Inc. in 2025.
Burbak Co cyber incidents detection timeline including parent company and subsidiaries
Berry Global, Inc. cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
Improper Protection Against Voltage and Clock Glitches in FPGA devices, could allow an attacker with physical access to undervolt the platform resulting in a loss of confidentiality.
Malicious code was inserted into the Nx (build system) package and several related plugins. The tampered package was published to the npm software registry, via a supply-chain attack. Affected versions contain code that scans the file system, collects credentials, and posts them to GitHub as a repo under user's accounts.
Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.1.0 to before 2.3.0, the API endpoint GET /api/problems/:id returns challenge hints in plaintext within the question object, regardless of whether the user has unlocked them via point deduction. Users can view all hints for free, undermining the business logic of the platform and reducing the integrity of the challenge system. This issue has been patched in version 2.3.0.
Flag Forge is a Capture The Flag (CTF) platform. In version 2.1.0, the /api/admin/assign-badge endpoint lacks proper access control, allowing any authenticated user to assign high-privilege badges (e.g., Staff) to themselves. This could lead to privilege escalation and impersonation of administrative roles. This issue has been patched in version 2.2.0.
parse is a package designed to parse JavaScript SDK. A Prototype Pollution vulnerability in the SingleInstanceStateController.initializeState function of parse version 5.3.0 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence.
