We are an innovative, competitive and leading pharmaceutical and healthcare company with strong brands and sustainable double digits growth. We are proud to deliver high quality products and excellent services to our customers so they can have better lives.
We are Merck KGaA, Darmstadt, Germany and its global affiliates. We are a leading global science and technology company headquartered in Germany. We are curious explorers, courageous pioneers, and ingenious inventors. Our colleagues across the globe love innovating with science and technology to enrich people’s lives with our solutions in Life Science, Healthcare, and Electronics. Together, we dream big and are passionate about caring for our rich mix of people, customers, patients, and the planet. We believe in the positive power of science and technology. It has determined our actions since 1668 and inspires us to continue researching for a future worth living. As a family-owned company with over 350 years of experience, we stand for sustainability, responsibility, and innovative strength. We take pride in being a diverse and inclusive company that values and fosters the talents and abilities of our employees. That's why we are always looking for curious minds that see themselves imagining the unimaginable with us. Privacy Statement: https://www.emdgroup.com/en/privacy-statement.html
Security & Compliance Standards Overview
No incidents recorded for Mahakam Beta Farma in 2025.
No incidents recorded for Merck KGaA, Darmstadt, Germany in 2025.
Mahakam Beta Farma cyber incidents detection timeline including parent company and subsidiaries
Merck KGaA, Darmstadt, Germany cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘percentage’ parameter in all versions up to, and including, 5.4.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
The ComboServlet in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.2, 2023.Q3.1 through 2023.Q3.5, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number or size of the files it will combine, which allows remote attackers to create very large responses that lead to a denial of service attack via the URL query string.
A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary directories on the target machine.
A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and create arbitrary directories on the target machine.
A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary files on the target machine.
