NHK A.I CyberSecurity Scoring
07/12/2025
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for Novartis Hong Kong in 2026.
No incidents recorded for Novartis Hong Kong in 2026.
No incidents recorded for Novartis Hong Kong in 2026.
Founded to serve health 70 years ago, Servier is a global pharmaceutical group governed by a non-profit Foundation that aspires to make a meaningful social impact for patients and for a sustainable world. The Group’s unique governance model preserves its independence and means it can fully serve its vocation of being committed to therapeutic progress to serve patient needs while adopting a long-term vision. Its employees are fully committed to this shared vocation, which serves as a source of inspiration every day. A world leader in cardiometabolism and venous diseases, Servier has made a major shift into oncology, which represents a new pillar of strategic growth. The Group devotes close to 70% of its R&D budget to this field, with the ambition of becoming a focused and innovative player in the development of treatments targeting rare cancers. Neurology will constitute a future growth driver. Servier is focusing on a limited number of diseases in this area where accurate patient profiling makes it possible to offer a targeted therapeutic response through precision medicine. To promote widespread access to quality care at a lower cost, the Group also offers a range of quality generic drugs covering most pathologies, leveraging well-known brands in France, and Eastern Europe. In all these areas, the Group takes patient considerations into account at every stage of the medicine life cycle. Headquartered in France, Servier relies on committed teams and strong geographical footprint; its medicines are available in close to 140 countries. In 2023/2024, the Group achieved sales revenue of €5.9 billion and EBITDA of €1.3 billion in 2024 (22.2%). Today, the Group employs over 22,000 people worldwide. -- To report a suspected adverse event with a Servier drug, please visit servier.com
Established in 1984, we are a global pharmaceutical company headquartered in Hyderabad, India. Driven by our purpose of ‘Good Health Can’t Wait’, we work to provide access to affordable and innovative medicines. We offer a portfolio of products and services including APIs, generics, branded generics, biosimilars and OTC. Our major markets include USA, India, Russia & CIS countries, China, Brazil and Europe. As a company with a history of deep science that has led to several industry firsts, we continue to plan ahead and invest in future growth drivers such as access to novel molecules, digital therapeutics and consumer healthcare. As an early adopter of sustainability and ESG actions, we released our first Sustainability Report in 2004. Our current ESG goals aim to set the bar high in environmental stewardship; access and affordability for patients; diversity; and governance. For more information, log on to: www.drreddys.com. Caution Notice: Dr. Reddy's has been made aware of candidates receiving fraudulent job opportunities from unauthorised recruiting agencies or people impersonating Dr. Reddy's leaders. These fraudulent jobs may be advertised on employment sites or mimic our careers site and company email addresses. Please know that Dr. Reddy's Laboratories has no affiliation or connection to these situations. Dr. Reddy's (and its associated/group companies) follows a formal recruitment process through its own HR department. Please report immediately in case you suspect a fraudulent job. You may raise your concern by: Accessing https://drreddys.ethicspoint.com. Calling on the hotline number. List of hotline numbers are available in https://drreddys.ethicspoint.com. The hotline is available 24x7 in multiple languages. Writing to [email protected] or [email protected]. For our community guidelines on LinkedIn, please visit: https://shorturl.at/LTvNZ
Sandoz is the global leader in generic and biosimilar medicines. Our Purpose is to pioneer access to medicines for patients globally. We are on a mission to drive innovation in the healthcare industry by freeing up resources sustainably and responsibly while continuing to address global health challenges such as antimicrobial resistance. We are present in more than 100 countries and our medicines serve some 500 million people every year. We have two main global businesses: Generics - divided between standard generics and complex generics - and Biosimilars. Read our community engagement guidelines: http://bit.ly/4ofoggc
A consumer-led global pharmaceutical company, creating healthy doses of life since 1949. When you operate in an industry like pharmaceuticals, your work goes way beyond creating ‘products for customers’. It is different from any other domain – there lies a higher sense of responsibiliti and a need for utmost integriti in everything you do. As you serve millions of lives, high qualiti standards become a pre-requisite, and safeti of your people and consumers always comes first. All this, while ensuring that each life you touch is treated with respect and digniti. For more than 60 years, Ipca has been a crucial healthcare partner in over 120 countries across the 6 continents. We are a fully-integrated pharmaceutical company that manufactures over 350 formulations and 80 APIs for various therapeutic segments. Today, we are one of the world’s largest manufacturers and suppliers of over a dozen APIs. These are produced from scratch at fully-automated manufacturing facilities, approved by the world’s most discerning drug regulatory authorities like UK-MHRA, EDQM-Europe, and WHO-Geneva, among others. - One of the largest suppliers of these APIs worldwide with manufacturing leadership in over 12 APIs globally - 15 APIs & 11 Formulations manufacturing facility across the globe Leader in DMARDs (Disease Modifying Anti-Rheumatic Drugs) treatment for Rheumatoid Arthritis - Leading brands in Pain, Rheumatology, Antimalarials and Hair care therapy - 4 formulations rank amongst the top 300 brands of IPM as per IQVIA
We are an R&D driven, AI-powered biopharma company committed to improving people’s lives and delivering compelling growth. We apply our deep understanding of the immune system to invent medicines and vaccines that treat and protect millions of people around the world, with an innovative pipeline that could benefit millions more. Our team is guided by one purpose: we chase the miracles of science to improve people’s lives; this inspires us to drive progress and deliver positive impact for our people and the communities we serve, by addressing the most urgent healthcare, environmental, and societal challenges of our time. Interactions with this account must comply with the Terms: https://bit.ly/sanofi-terms
Aurobindo Pharma Limited (NSE: AUROPHARMA, BSE: 524804, Reuters: ARBN.NS, Bloomberg: ARBP IN) is an integrated global pharmaceutical company headquartered in Hyderabad, India. The Company develops, manufactures, and markets a wide range of generic pharmaceuticals, branded specialty drugs, and active pharmaceutical ingredients (APIs) across more than 150 countries. It is ranked among the top 10 generic companies in eight European nations and holds the distinction of being the largest generic pharmaceutical company in the United States. With over 30 state-of-the-art manufacturing and packaging facilities approved by leading global regulatory authorities including USFDA, UK MHRA, EDQM, Japan PMDA, WHO, Health Canada, South Africa MCC, and Brazil ANVISA, Aurobindo Pharma ensures the highest standards of quality. Its robust portfolio spans eight major therapeutic areas: Central Nervous System (CNS), Antiretroviral (ARV), Cardiovascular (CVS), Antibiotics, Gastroenterology, Anti-diabetics, Oncology, and Dermatology, supported by a strong R&D infrastructure that drives innovation, affordability, and accessibility.
Intas is one of the leading multinational pharmaceutical formulation development, manufacturing, and marketing organization in the world. It has been growing at 19% CAGR and crossed the $2.5 billion mark in the past financial year. The company has set up a network of subsidiaries, under the name Accord Healthcare in the EU, US, Canada, SA, Australia, APAC as well as CIS & MENA regions. Intas is present in 85+ countries, with more than 70% of its revenue coming from global business. Currently ranked 6th in the Indian pharmaceutical market, it’s the largest privately owned Indian generic pharma company. Intas has established leadership in key therapeutic segments like CNS, Cardio, Diabeto, Gastro, Urology, Oncology & Animal Health in India. We are among the top 10 generic players in the highly regulated markets of EU, US & UK. Intas operates 17 advanced formulations, R&D, and distribution facilities, of which 10 are in India and the rest in the UK, Mexico & Greece with the help of our 23,000+ Human Capital. Between them, the facilities are accredited by global regulators such as USFDA, EMA, MHRA, TGA, and others. The company invests ~6-7% of its revenues in R&D and has over 10,000 product registrations worldwide with a strategic pipeline of 300+ high-value FTF/FTM, Biosimilars, and NDDS products. Intas' highly advanced EU-GMP Certified Biopharma division is fueled by a mission to provide affordable “Biosimilars for Billions” across niche segments such as oncology, auto-immune, ophthalmology, nephrology, rheumatology, and hormone-based therapies. The Plasma Fractionation Unit of Intas Pharmaceuticals is a pioneer in manufacturing plasma-derived therapeutics. It houses a full-fledged R&D lab and a state-of-the-art WHO-GMP-certified manufacturing facility complemented with a GLP-compliant QC lab. Our values of Innovation, Customer Delight, Ownership & Collaboration, Performance Focus & Care for Society are the driving forces toward excellence.
Viatris Inc. (NASDAQ: VTRS) is a global healthcare company uniquely positioned to bridge the traditional divide between generics and brands, combining the best of both to more holistically address healthcare needs globally. With a mission to empower people worldwide to live healthier at every stage of life, we provide access at scale. In 2022 alone, we supplied high-quality medicines to approximately 1 billion patients around the world. With our exceptionally extensive and diverse portfolio of medicines, a one-of-a-kind global supply chain designed to reach more people when and where they need them, and the scientific expertise to address some of the world’s most enduring health challenges, access takes on deep meaning at Viatris. We have the ability to touch all of life’s moments, from birth to end of life, acute conditions to chronic diseases. We are headquartered in the U.S., with global centers in Pittsburgh, Shanghai and Hyderabad, India Social Media Guidelines: https://newsroom.viatris.com/social-media-community-guidelines Investors: https://investor.viatris.com Corporate Social Responsibility: https://www.viatris.com/sustainability Connect with Viatris Instagram: https://www.instagram.com/viatrisinc X: https://www.x.com/viatrisinc Viatris and our recruiting firms will not ask for sensitive personal information, such as your social security number, date of birth or bank account details via text, email or social media. Additionally, Viatris representatives do not request payment or personal bank information nor send payment to purchase hardware on your own. Viatris.com is the primary source of all company job postings and authorized third-party career websites.
Parexel is a leading global clinical research organization (CRO) providing insights-driven Clinical and Consulting solutions to the world’s life sciences industry. Leveraging deep local knowledge and a global breadth of clinical, regulatory and therapeutic expertise, our 24,000+ professionals worldwide work in partnership with biopharmaceutical leaders, emerging innovators and sites to design and deliver clinical trials with patients in mind — broadening access and making clinical research a care option for anyone, anywhere. Our proven track record spans 40+ years and drives us forward, advancing clinical research in healthcare’s most complex areas while harnessing innovation to drive efficiencies across every phase of the clinical development process. Our insights-driven approach, proven delivery and trusted execution are accelerating the delivery of life-changing treatments to patients — With Heart.™ We continue to earn recognition industrywide, including the 2025 Scrip Award for “Best Contract Research Organization – Full-Service Provider,” 2024 Fierce Biotech CRO Award for "Innovative Approaches to Patient-Centric Research" and the 2024 and 2023 Society for Clinical Research Sites (SCRS) Eagle Award. Community Guidelines Because Parexel’s social media channels are open to the general public and employees, we are not responsible for views expressed other than our own. However, we do not tolerate posts that are: • Abusive, harassing or threatening to others. • Defamatory, offensive, obscene, vulgar or depicting violence. • Hateful targeting by race/ethnicity, age, color, creed, religion, gender, sexual preference or orientation, nationality or political beliefs. • Sexually explicit or pornographic. • Fraudulent, deceptive, libelous, misleading or unlawful. • Referencing criminal or illegal activity. • Spamming. We reserve the right to remove comments that do not adhere to our guidelines and report users who violate the rules of our page.
Latest updates, reports, and threat intel affecting the global network.
We have successfully defended NYSE-listed healthcare company Novartis against an equal opportunities action filed by a former employee.
China-based biotechnology company BeiGene Ltd said on Monday it will partner with Swiss firm Novartis AG to develop, manufacture and commercialize its cancer...
Novartis and BenevolentAI sign AI oncology deal. Editor's picks. Killing the golden goose of US drug innovation (Part II): Drug...
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.22 and 4.0.0-RC1 through 4.17.15, an attacker with only a GitHub account can plant a JavaScript payload in a craftcms/cms issue title. When a Craft admin uses the CraftSupport widget’s "Give feedback" screen and types a search term that returns the poisoned issue, the payload executes in the admin’s control panel session. No control panel account or elevated privileges are required on the attacker’s side. This issue has been fixed in versions 4.17.16 and 5.9.23.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.21 and 4.0.0-RC1 through 4.17.14, theAssetsController::actionDeleteFolder() only requires the deleteAssets:<volume-uid> permission for the target folder. It never enforces deletePeerAssets:<volume-uid>, even though Assets::deleteFoldersByIds() cascades deletion to every descendant folder and every asset inside, regardless of the uploader's assigned privileges. A low-privilege user who has been granted folder-management rights on a shared volume can therefore destroy assets uploaded by other users (peer assets), bypassing the per-asset peer-permission check that the sibling actionDeleteAsset endpoint correctly applies. This issue has been fixed in versions 4.17.15 and 5.9.22.
Craft CMS is a content management system (CMS). Versions 5.0.0-RC1 through 5.9.20, and 4.0.0-RC1 through 4.17.13 contain an authorization issue in the AssetsController::actionReplaceFile that can delete a source asset without source delete permission by supplying both assetId and sourceAssetId. AssetsController::actionReplaceFile() supports replacing a target asset file using another existing asset as the source. The action loads: assetId -> $assetToReplace and sourceAssetId -> $sourceAsset, then enforces replace permissions using ($assetToReplace ?: $sourceAsset). When both IDs are provided, this expression resolves to the target asset so no permission check is performed against the source asset volume. When both assets are present, Craft copies the source file into the target and then deletes the source asset. There is no deletion check for for the source asset. An authenticated user who can replace files in one volume can delete assets in another volume where they do not have delete permission, as long as they can obtain a sourceAssetId, leading to broken content references and data loss. This issue has been fixed in versions 4.17.14 and 5.9.21.
Description: To issue and renew TLS certificates on behalf of customers, Cloudflare's Universal SSL feature automatically manages the CAA RRset for the customer's zone. This auto-managed RRset is permissive by design (e.g. 'issue "letsencrypt.org"' without parameters). On Universal SSL zones, Cloudflare's authoritative DNS serves this auto-managed RRset at query time, superseding any customer-configured CAA records on the zone. When a customer publishes a stricter CAA record using the RFC 8657 accounturi or validationmethods parameters, the Certificate Authority does not observe those parameters when evaluating the served RRset under RFC 8659. As a result, the RFC 8657 account-binding and validation-method-binding protections are not enforced end-to-end on Universal SSL zones. Successful exploitation could result in issuance of a browser-trusted TLS certificate to an attacker, enabling MITM against the affected domain. Exploitation is non-trivial in practice: an attacker would need to hold an ACME account at one of the Certificate Authorities in the served CAA RRset and to simultaneously satisfy domain control validation across the multiple geographically distinct Network Perspectives the CA relies on for Multi-Perspective Issuance Corroboration. Cloudflare prefixes are anycast-announced from hundreds of locations globally, raising the bar against single-vantage-point BGP hijacks. Any resulting misissuance of a browser-trusted certificate is subject to Certificate Transparency logging required by major browsers, and would be visible to CT monitoring. Mitigation: Customers requiring strict RFC 8657 enforcement need to disable Universal SSL on the affected zone. Universal SSL's automatic CAA management and customer-set RFC 8657 accounturi and validationmethods enforcement are mutually exclusive by the nature of the issue, so there is no in-product workaround that preserves both. Certificate Transparency monitoring is recommended for all customers as a general detection control. Credits: David Osipov (ORCID: https://orcid.org/0009-0005-2713-9242), independent researcher
Out of bounds read and write in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.