What is the official website of Food4Less/FoodsCo ?

The official website of Food4Less/FoodsCo is http://www.food4less.com.

What is Food4Less/FoodsCo's cybersecurity risk score?

Food4Less/FoodsCo has an AI-generated cybersecurity risk score of 774 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Food4Less/FoodsCo experienced?

According to Rankiteo, Food4Less/FoodsCo currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Food4Less/FoodsCo been affected by any supply chain cyber incidents ?

According to Rankiteo, Food4Less/FoodsCo has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Food4Less/FoodsCo have SOC 2 Type 1 certification ?

According to Rankiteo, Food4Less/FoodsCo is not certified under SOC 2 Type 1.

Does Food4Less/FoodsCo have SOC 2 Type 2 certification ?

According to Rankiteo, Food4Less/FoodsCo does not hold a SOC 2 Type 2 certification.

Does Food4Less/FoodsCo comply with GDPR ?

According to Rankiteo, Food4Less/FoodsCo is not listed as GDPR compliant.

Does Food4Less/FoodsCo have PCI DSS certification ?

According to Rankiteo, Food4Less/FoodsCo does not currently maintain PCI DSS compliance.

Does Food4Less/FoodsCo comply with HIPAA ?

According to Rankiteo, Food4Less/FoodsCo is not compliant with HIPAA regulations.

Does Food4Less/FoodsCo have ISO 27001 certification ?

According to Rankiteo,Food4Less/FoodsCo is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Food4Less/FoodsCo operate in ?

Food4Less/FoodsCo operates primarily in the Retail industry.

How many employees does Food4Less/FoodsCo have ?

Food4Less/FoodsCo employs approximately 1,123 people worldwide.

Does Food4Less/FoodsCo own any subsidiaries ?

Food4Less/FoodsCo presently has no subsidiaries across any sectors.

How many LinkedIn followers does Food4Less/FoodsCo have ?

Food4Less/FoodsCo's official LinkedIn profile has approximately 2,288 followers.

What is the NAICS classification code for Food4Less/FoodsCo ?

Food4Less/FoodsCo is classified under the NAICS code 43, which corresponds to Retail Trade.

Does Food4Less/FoodsCo have a Crunchbase profile ?

No, Food4Less/FoodsCo does not have a profile on Crunchbase.

Does Food4Less/FoodsCo have a LinkedIn profile ?

Yes, Food4Less/FoodsCo maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/food4less-foodsco.

How many cybersecurity incidents has Food4Less/FoodsCo experienced ?

As of June 30, 2026, Rankiteo reports that Food4Less/FoodsCo has experienced 2 cybersecurity incidents.

How many peer or competitor companies does Food4Less/FoodsCo have ?

Food4Less/FoodsCo has an estimated 15,880 peer or competitor companies worldwide.

What types of cybersecurity incidents has Food4Less/FoodsCo faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach and Cyber Attack.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Food4Less/FoodsCo

Boost Score +25 with badge (5 left)

774

/1000

Fair

799

/1000

Fair

Food4Less/FoodsCo Vendor Cyber Rating & Cyber Score

food4less.com

Add Your Compliance Badge

Food 4 Less is dedicated to our purpose: to Feed the Human Spirit ™. Food 4 Less/Foods Co is more than 11,000 associates serving customers in 129 price-impact, warehouse-format supermarkets under the banners Food 4 Less in Southern California, Illinois and Indiana, and Foods Co in Central and Northern California. From the company’s headquarters in Los Angeles County, Food 4 Less is a recognized leader in community service and giving. Last year, the company contributed more than $4 million to support education, hunger relief, women’s health and local nonprofit organizations in the communities served by the company’s stores. Food 4 Less is a subsidiary of The Kroger Co., (NYSE:KR), one of the world’s largest retailers, based in Cincinnati,

Food4Less/FoodsCo A.I CyberSecurity Scoring

Scoring History

Food4Less/FoodsCo

Food4Less/FoodsCo CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Food4Less/FoodsCo

Breach

02/2021

KRO81318422

Food4Less/FoodsCo

Cyber Attack

12/2020

KRO505080525

Loading…

A.I.

Food4Less/FoodsCo Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Food4Less/FoodsCo

Incidents vs Retail Industry Avg (This Year)

No incidents recorded for Food4Less/FoodsCo in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Food4Less/FoodsCo in 2026.

Incident Types Food4Less/FoodsCo vs Retail Industry Avg (This Year)

No incidents recorded for Food4Less/FoodsCo in 2026.

Incident History - Food4Less/FoodsCo (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Food4Less/FoodsCo Subsidiaries

Food4Less/FoodsCo

Retail

Website: http://www.food4less.com

Company Size: 1,123

KrogerRetail

Loading…

Food4Less/FoodsCo Similar Companies

Ace Hardware Corporation

acehardware.com

Ace Hardware is the largest retailer-owned hardware cooperative in the world with over 5,800 locally owned and operated hardware stores in approximately 70 countries. Headquartered in Oak Brook, Ill., Ace and its subsidiaries operate an expansive network of distribution centers in the U.S. and have distribution capabilities in Ningbo, China; and Santa Catarina, Mexico. Since 1924, Ace has become a part of local communities around the world and known as the place with the helpful hardware folks. For more information, visit acehardware.com or newsroom.acehardware.com.

Grupo Éxito

grupoexito.com.co

En Grupo Éxito evolucionamos junto a nuestros clientes, adaptándonos a las nuevas formas de consumo a través de la innovación, la transformación digital, las experiencias y la sostenibilidad. Como parte de la plataforma de retail más grande de Suramérica, estamos presentes en Colombia con las marcas Éxito, Carulla, Super Inter, Surtimax, Surtimayorista y Viva; en Uruguay con Grupo Disco y Grupo Devoto; y en Argentina con Libertad y Paseo. Nos diferenciamos con estrategias que nos permiten responder a un entorno competitivo y generar impacto en las comunidades donde operamos: ✅ Innovación en formatos de valor y nuevas soluciones de pago sin fricciones. ✅ Estrategia omnicliente, para brindar una experiencia fluida en cualquier canal. ✅ Monetización del tráfico, a través de nuestros centros comerciales, programas de fidelidad y negocios complementarios. ✅ Sostenibilidad, porque creemos en un negocio que genera valor compartido para el país y el planeta. Nuestro compromiso es seguir transformándonos para entregar lo mejor a nuestros clientes, colaboradores y aliados. 🚀 #NutrimosdeOportunidadesaColombia

Amazon Business

amazonbusiness.com

Think there’s a better way to buy for business? So do we. That’s why Amazon Business is changing the world of procurement. We simplify the purchasing process to make it easier for our customers to get the products they need. We solve for our customers’ unmet and undiscovered needs — continuously expanding our selection and adding relevant new tools and features. We’re right for any organization at any stage — starting, growing, transforming. And it’s our instinct to invent — we purposefully question what others don’t, creating unexpectedly better ways of getting things done. This is the official global LinkedIn page for Amazon Business. Follow us for updates.

Frasers Group

cb frasers.group

Frasers Group started as a small store in Maidenhead in 1982 and from there, grew to become a global powerhouse. We are now a collection of the world’s most iconic brands including Sports Direct, Flannels, GAME, Jack Wills, Sofa.com, Evans Cycles, USC, and Everlast. We believe the higher the risk, the greater the reward. We’ve never been afraid to strive forward and change the way the industry operates, diversifying our portfolio and elevating stores. We’re pushing the boundaries of traditional retail environments; future-proofing our business and improving product access to create a shopping environment that will be fit for purpose for many more years to come. We’re not sitting back – there’s no room for hesitation.

Publix Super Markets

publix.com

Founded in 1930, Publix Super Markets is the largest and fastest-growing employee-owned supermarket chain in the United States. Publix employs over 200,000 associates. We are privately-owned, hold no long-term debt, have avoided layoffs, and continue to grow year after year. Publix and our associates excel in community involvement, volunteerism and environmental sustainability. Having an inclusive working environment makes our company—and our community—better. We value the fresh ideas and unique perspectives that each associate provides. We make it a priority to employ and work with qualified and talented people, which includes associates from many backgrounds, cultures, abilities, and ethnicities.

Safeway

safeway.com

Safeway operates as a banner of Albertsons Companies. Locally great and nationally strong, Albertsons Cos. (NYSE: ACI) is one of the largest food and drug retailers in the United States. Albertsons Cos. operates stores across 34 states and the District of Columbia under 20 well-known banners including Albertsons, Safeway, Vons, Jewel-Osco, Shaw’s, Acme, Tom Thumb, Randalls, United Supermarkets, Pavilions, Star Market, Haggen, and Carrs. Albertsons Cos. is committed to helping people across the country live better lives by making a meaningful difference, neighborhood by neighborhood. In 2019 alone, along with the Albertsons Companies Foundation, the company gave nearly $225 million in food and financial support. These efforts helped millions of people in the areas of hunger relief, education, cancer research and treatment, programs for people with disabilities and veterans outreach.

Abercrombie & Fitch Co.

abercrombie.com

Abercrombie & Fitch Co. (NYSE: ANF) is a global, digitally led omnichannel specialty retailer of apparel and accessories catering to kids through millennials with assortments curated for their specific lifestyle needs. The company operates a family of brands, including Abercrombie brands and Hollister brands, each sharing a commitment to offer products of enduring quality and exceptional comfort that support global customers on their journey to being and becoming who they are. Abercrombie & Fitch Co. operates over 800 stores under these brands across North America, Europe, Asia and the Middle East, as well as the e-commerce sites abercrombie.com, abercrombiekids.com, and hollisterco.com. To apply for jobs and learn more about our hiring process, visit corporate.abercrombie.com/careers/ If you are emailed by an A&F Co. recruiter at any point in the hiring process, it will come from an email address ending in @anfcorp.com, @stores.anfcorp.com or @smartrecruiters.com.

Wawa, Inc.

cb wawa.com

Here at Wawa, the sky's the limit. Voted as “America’s Favorite Convenience Store,” Wawa operates a chain of convenience retail stores located in Pennsylvania, New Jersey, Delaware, Maryland, West Virginia, Indiana, Ohio, Kentucky, Virginia, North Carolina, Georgia, Alabama, Florida, and Washington D.C. We're fast-growing and expanding in 2025 and 2026. Today, Wawa is your all day, every day stop for fresh, built-to-order foods, beverages, coffee, fuel services, and surcharge-free ATMs. We're making every day a little more fulfilling—one smile, hoagie, and experience at a time. We know that it's our Associates who put the "wow" in working at Wawa, so we're invested in giving them the encouragement they need to take flight. By providing flexibility and support, at work and beyond, we create an environment where everyone can thrive. We believe that with the right ingredients to grow and build a career—and a little wind beneath the wings—our Associates can reach new heights. Guided by our commitment to community, Wawa's 46K+ Associates take pride in putting people first, making days brighter, and bringing joy to our friends and neighbors. With opportunities such as volunteering, charitable giving, and events, we're able to extend care beyond the workplace, building stronger neighborhoods and long-lasting relationships. We have benefits that fuel well-being, including:* • Employee Stock Ownership Plan (ESOP) • Tuition Reimbursement • 401(k) Plan • Medical/Dental/Prescription Coverage • Flexible Spending Accounts (Health Care & Dependent Care) • Employee Assistance & Wellness Programs • Employee Credit Union • Paid Time Off • Employee Resource Groups • Parental Leave • Wellness Programs *eligibility requirements may apply Got growth goals? Looking for a supportive flock? Soar with us!

Metro Inc.

cb metro.ca

With annual sales of more than $21 billion, METRO Inc. is a food and pharmacy leader in Québec and Ontario, providing employment to more than 97,000 people. Its purpose is to Nourish the health and well-being of our communities. As a retailer, franchisor, distributor, manufacturer, and provider of eCommerce services, the company operates or services a network of 995 food stores under several banners including Metro, Metro Plus, Super C, Food Basics, Adonis and Première Moisson, and some 640 pharmacies primarily under the Jean Coutu, Brunet, Metro Pharmacy and Food Basics Pharmacy banners. For more details, visit corpo.metro.ca

Loading…

NEWS

Food4Less/FoodsCo CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-8023

SUMMARY

Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STATIC_FS, available when CONFIG_FILE_SYSTEM is enabled) that serves files from a configured root directory. Before this fix, both the HTTP/1 and HTTP/2 front-ends placed the raw, attacker-controlled request path into client-url_buffer (assembled in on_url() for HTTP/1 and copied verbatim from the :path pseudo-header for HTTP/2) without resolving ./.. segments. The static-FS handler then built the on-disk filename by directly concatenating the configured root with that raw URL (snprintk(fname, ..., "%s%s", static_fs_detail-fs_path, client-url_buffer) at http_server_http1.c:603 and http_server_http2.c:490) and opened it with fs_open(fname, FS_O_READ). Because the handler is reached via wildcard/leading-dir (fnmatch FNM_LEADING_DIR) or fallback resource matching, a request such as GET /<prefix/../../<file is dispatched to the handler and, after the underlying filesystem (e.g. LittleFS/FAT) resolves the .. segments, escapes the configured web root, letting an unauthenticated remote client read arbitrary readable files on the mounted volume (information disclosure). The HTTP server requires no TLS or authentication to reach this path. The fix adds http_server_remove_dot_segments(), which canonicalizes the path portion of the URL before resource lookup in both protocol handlers, neutralizing the traversal. Affects releases v4.0.0 through v4.4.0 for deployments that register a static-filesystem resource.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 7.5)

cvss3

Base Score: 7.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score

3.6

Exploitability

3.9

REFERENCES

CVE-2026-7656

SUMMARY

The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_input) used an incorrect boolean expression that combined the RFC 4861 validity checks with the ICMPv6 code check using the wrong operator precedence: the form was '((length/hop/source/target checks) && (icmp_hdr-code != 0))'. Because every legitimate ND message carries ICMPv6 code 0, an attacker setting code == 0 (the normal value) caused the entire predicate to evaluate false, so the packet was never dropped and all of the other checks were silently skipped. The bypassed checks include the mandatory Hop Limit == 255 verification (which proves an ND packet originated on-link and was not forwarded) and, for Router Advertisements, the requirement that the source be a link-local address, as well as multicast-target sanity checks. As a result, an adjacent on-link attacker — and, because the Hop-Limit-255 guard is bypassed, potentially a remote/off-link attacker whose packets would otherwise be rejected — can have forged Router Advertisement, Neighbor Solicitation, and Neighbor Advertisement messages accepted. A forged RA lets the attacker reconfigure the victim's default router, on-link prefixes (SLAAC), MTU, reachable/retransmit timers, and (with CONFIG_NET_IPV6_RA_RDNSS) DNS servers, while forged NS/NA enable neighbor-cache poisoning, enabling man-in-the-middle, traffic redirection, and denial of service. The flaw is an input-validation/authentication weakness rather than a memory-safety issue: the underlying packet-parsing primitives (net_pkt_get_data, net_pkt_read, net_pkt_skip) are independently bounds-safe and the validated 'length' is the true buffer length, so skipping the length check causes no out-of-bounds access. The defect has existed since the logic was introduced in 2018 and shipped in all releases through v4.4.0; it is fixed by splitting the condition so any failing check drops the packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 8.1)

cvss3

Base Score: 8.1

Complexity: LOW

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Impact Score

5.2

Exploitability

2.8

REFERENCES

CVE-2026-51219

SUMMARY

A heap buffer overflow in the HighPriorityASDUQueue_hasUnconfirmedIMessages function of lib60870 v2.3.3 to v2.3.6 allows attackers to cause a Denial of Service (DoS) via a crafted payload.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-51218

SUMMARY

A heap buffer overflow in the TS7Worker::PerformFunctionWrite() function (/core/s7_server.cpp) of snap7 v1.4.3 allows attackers to cause a Denial of Service (DoS) via a crafted packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-10648

SUMMARY

mcumgr_serial_process_frag() in subsys/mgmt/mcumgr/transport/src/serial_util.c calls net_buf_reset() on the result of smp_packet_alloc() before checking it for NULL. smp_packet_alloc() uses net_buf_alloc(K_NO_WAIT) against the shared MCUmgr packet pool (CONFIG_MCUMGR_TRANSPORT_NETBUF_COUNT, default 4), which returns NULL when the pool is exhausted. In default builds the __ASSERT_NO_MSG in net_buf_reset is a no-op, so net_buf_simple_reset writes through the NULL pointer (buf->len = 0; buf->data = buf->__buf), causing a fault/crash. The fragment data reaches this code from attacker-controlled bytes on the MCUmgr serial/UART/shell-console transports (smp_uart.c, smp_raw_uart.c, smp_shell.c), and a fresh buffer is allocated at the start of essentially every new packet. An attacker on the serial/console link can flood the transport to drive the 4-entry buffer pool to exhaustion and induce the NULL dereference, crashing the device (denial of service). The defect was introduced after the original MCUmgr rework and shipped in Zephyr v4.4.0. The fix moves the NULL check ahead of net_buf_reset.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 6.2)

cvss3

Base Score: 6.2

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score

3.6

Exploitability

2.5

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…