TFC A.I CyberSecurity Scoring
02/12/2025
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for TOCCO FOOD COMPANY in 2026.
No incidents recorded for TOCCO FOOD COMPANY in 2026.
No incidents recorded for TOCCO FOOD COMPANY in 2026.
Food and Beverage Services
Arca Continental produces, distributes and sells non-alcoholic beverages under The Coca-Cola Company brand, as well as snacks under the brands of Bokados in Mexico, Inalecsa in Ecuador and Wise in the US. With an outstanding history spanning more than 98 years, Arca Continental is the second-largest Coca-Cola botter in Latin America and one of the largest in the world. Within its Coca-Cola franchise territory, the company servers over 119 million consumers in northern and western Mexico, Ecuador, Peru, northern Argentina and southwestern region of the U.S. The Company´s shares trade on the Mexican Stock Exchange under the ticker symbol "AC". For more information on Arca Continental, please visit www.arcacontal.com
Here at the DQ® system, we believe that HAPPY TASTES GOOD®. Our first location opened in Joliet, Illinois, 80 years ago. Since then we’ve grown to more than 7,000 DQ® locations in the U.S., Canada and 22 other countries. Our restaurants offer a variety of sweet treats and crave-worthy eats that hold a special place in the hearts and minds of fans of all ages, including our signature BLIZZARD® Treat. Guided by our vision to become the world’s favorite quick-service restaurant, we’re proud of the multinational company culture we’ve built while maintaining a small community feel. Our hardworking employees believe in our mission of creating positive memories for all who touch DQ. Headquartered in Minneapolis, Minnesota, with offices in Canada and Singapore, our corporate employees support our independent franchisees from our corporate offices and field locations around the world. Giving back Since 1984, the DQ system has raised more than $154 million to support Children’s Miracle Network Hospitals® in the U.S., and the Children’s Miracle Network Member Hospitals® in Canada. Every time fans and franchisees donate to these causes, every dollar stays in the community to support the local children’s hospital. Through our corporate giving initiative, DQ Cares, we provide employees time paid time off to volunteer in their communities. Careers If you believe in creating happy smiles, lasting memories and unforgettable moments, we want to hear from you. To learn more about DAIRY QUEEN® careers, visit dairyqueen.com/us-en/Company/Careers/. Franchise opportunities To become part of our sweet success and explore franchising opportunities, visit us at dairyqueenfranchising.com. Ownership The DQ brand, along with the ORANGE JULIUS® brand, is privately owned by Berkshire Hathaway Inc., a company owned by the legendary investor, Warren Buffet. Read our Social Media Community Guidelines: http://bit.ly/DQSocialCommunityGuidelines
Sysco is the global leader in selling, marketing and distributing food and related products to customers who prepare meals away from home. This includes restaurants, healthcare and educational facilities, lodging establishments, entertainment venues, and more. Sysco operates almost 340 distribution centers, in over 10 countries, with 76,000 colleagues serving approximately 730,000 customer locations. The company generated sales of more than $81 billion in fiscal year 2025 that ended June 28, 2025. As the world’s largest food-away-from-home distributor, Sysco offers customized supply chain solutions, bespoke specialty product offerings, and culinary support to drive customers to innovate and optimize their operations. We act as a trusted business partner to our customers, helping them grow through our industry-leading portfolio that includes fresh produce, premium proteins, specialty products, sustainably focused items, equipment and supplies, and innovative culinary solutions. For more information, visit www.sysco.com.
JDE Peet’s is the world’s leading pure-play coffee company, serving approximately 4,400 cups of coffee per second in more than 100 markets. Guided by our ‘Reignite the Amazing’ strategy, we are focusing on brand-led growth across three big bets: Peet’s, L’OR, and Jacobs, alongside a collection of 9 local icons. In 2024, JDE Peet’s generated total sales of EUR 8.8 billion and employed a global workforce of more than 21,000 employees. Discover more about our journey to deliver a coffee for every cup and a brand for every heart at www.jdepeets.com.
We believe every consumer should have access to their favorite snack, everywhere. We own the manufacturing process from seed to shelf and actively invest in technology to automate key steps of the process. This helps us be more agile in what we need to make, who we need to make it for, and how we can best deliver it to snack lovers from coast to coast.
Greene King is the country’s leading pub company and brewer with c.2,600 pubs, restaurants and hotels across England, Wales and Scotland. At Greene King we are passionate about delivering our purpose to ‘pour happiness into lives’. That’s for our customers, our team, our pub partners, our suppliers and the communities in which we live, operate and serve. Founded in 1799 with offices in Bury St. Edmunds, Suffolk and Burton on Trent in Staffordshire we employ around 40,000 people across the group with three divisions: Greene King pubs, Destination Brands & Ventures, and Brewing & Brands. • Greene King pubs: Greene King pubs is our mainstream pub brand located where people and communities come together; pubs enjoyed in cities, towns and villages throughout the country with clear ambition to be “The Nation’s Most Loved Pub Brand”. Pub Partners runs our tenanted and leased pubs business and Hive Franchise pubs. • Destination Brands & Ventures: Destination Brands is a portfolio of distinct brands which includes Hungry Horse, Chef & Brewer, Farmhouse Inns and Flaming Grill that bring friends and family together, delivering great service, quality and value for money for a range of eating out and drinking occasions. Venture includes Hickory’s, Premium (Crafted Pubs & Metropolitan Pub Company) and Hotels which operate autonomously of Greene King’s managed pub brands. • Brewing & Brands covers the brewing sides of the business. Quality ales are brewed at the Westgate brewery in Bury St Edmunds and the Belhaven Brewery in Dunbar. Our industry-leading portfolio includes Greene King IPA, Old Speckled Hen, Abbot Ale, Ice Breaker and Belhaven Best and our premium beers, Level Head and Flint Eye, brewed for the modern-day drinker.
PRAN RFL Group, one of the most reputed conglomerates in Bangladesh, is in market since 1981. It started mainly with Foundry business and gradually diversified to Light Engineering, PVC Fittings, Plastics, Food and Beverage and Agro-Processing. It has it's marketing and selling network in 145 countries as of date.Group directly employs over 1,25,000 people and another 15,00,000 over people subsists on PRAN-RFL Group.
Greggs is a leading food-on-the-go retailer with over 2,400 shops nationwide and serving over six million customers a week. We stand for great tasting, freshly prepared food that our customers can trust, at affordable prices and aim to become the customers’ favourite for food-on-the-go. With ambitions to grow to over 3,0000 shops nationwide and ownership of our supply chain, we are in a unique position to make quality, freshly prepared food accessible to anyone, anywhere. Our supply network... is being reshaped to support growth and compete more effectively in the food-on-the-go market. We're investing in a major programme to support shop expansion substantially beyond 3,000 outlets in the UK. Our shops... are being refurbished and relocated in locations away from high streets such as retail and industrial parks, motorway service stations and travel hubs, to meet the demands of busy food-on-the-go customers. Our franchise model continues to offer opportunities for further growth in non-high street locations. Our product offer... is differentiated by the way we freshly prepare food in our shops each day and offer customers outstanding value for good quality, great tasting food-on-the-go, at any time of day. For more on how to join us at Greggs please visit careers.greggs.co.uk
ABOUT LITTLE CAESARS® Little Caesars, the Best Value in Pizza*, was founded by Mike and Marian Ilitch as a single, family-owned restaurant in 1959 and is headquartered in downtown Detroit, Michigan. It is the third-largest pizza chain in the world, with restaurants in each of the 50 U.S. states and 29 countries and territories. Known for its HOT-N-READY® pizza, Crazy Puffs®, and famed Crazy Bread®, Little Caesars uses quality ingredients, like fresh, never-frozen mozzarella and Muenster cheese and sauce made from fresh-packed, vine-ripened California crushed tomatoes. The brand is known for innovation and is home to the exclusive Pizza Portal® pickup, a heated, self-service mobile order pickup station. Little Caesars is also the Official Pizza Sponsor of the NFL. A high-growth company with over 65 years in the $150 billion worldwide pizza industry, Little Caesars continually looks for franchisee candidates to join the team in markets worldwide. In addition to providing the opportunity for entrepreneurial independence in a franchise system, Little Caesars offers a simple operating system, a reputation for taste and value, and strong brand awareness with one of the most recognized characters in the country, Little Caesar. Little Caesars is proud to be part of the Ilitch Companies family of businesses. For more, visit LittleCaesars.com and follow Little Caesars on TikTok, Instagram, and X. *Limited to top 4 national pizza chains
Latest updates, reports, and threat intel affecting the global network.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.22 and 4.0.0-RC1 through 4.17.15, an attacker with only a GitHub account can plant a JavaScript payload in a craftcms/cms issue title. When a Craft admin uses the CraftSupport widget’s "Give feedback" screen and types a search term that returns the poisoned issue, the payload executes in the admin’s control panel session. No control panel account or elevated privileges are required on the attacker’s side. This issue has been fixed in versions 4.17.16 and 5.9.23.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.21 and 4.0.0-RC1 through 4.17.14, theAssetsController::actionDeleteFolder() only requires the deleteAssets:<volume-uid> permission for the target folder. It never enforces deletePeerAssets:<volume-uid>, even though Assets::deleteFoldersByIds() cascades deletion to every descendant folder and every asset inside, regardless of the uploader's assigned privileges. A low-privilege user who has been granted folder-management rights on a shared volume can therefore destroy assets uploaded by other users (peer assets), bypassing the per-asset peer-permission check that the sibling actionDeleteAsset endpoint correctly applies. This issue has been fixed in versions 4.17.15 and 5.9.22.
Craft CMS is a content management system (CMS). Versions 5.0.0-RC1 through 5.9.20, and 4.0.0-RC1 through 4.17.13 contain an authorization issue in the AssetsController::actionReplaceFile that can delete a source asset without source delete permission by supplying both assetId and sourceAssetId. AssetsController::actionReplaceFile() supports replacing a target asset file using another existing asset as the source. The action loads: assetId -> $assetToReplace and sourceAssetId -> $sourceAsset, then enforces replace permissions using ($assetToReplace ?: $sourceAsset). When both IDs are provided, this expression resolves to the target asset so no permission check is performed against the source asset volume. When both assets are present, Craft copies the source file into the target and then deletes the source asset. There is no deletion check for for the source asset. An authenticated user who can replace files in one volume can delete assets in another volume where they do not have delete permission, as long as they can obtain a sourceAssetId, leading to broken content references and data loss. This issue has been fixed in versions 4.17.14 and 5.9.21.
Description: To issue and renew TLS certificates on behalf of customers, Cloudflare's Universal SSL feature automatically manages the CAA RRset for the customer's zone. This auto-managed RRset is permissive by design (e.g. 'issue "letsencrypt.org"' without parameters). On Universal SSL zones, Cloudflare's authoritative DNS serves this auto-managed RRset at query time, superseding any customer-configured CAA records on the zone. When a customer publishes a stricter CAA record using the RFC 8657 accounturi or validationmethods parameters, the Certificate Authority does not observe those parameters when evaluating the served RRset under RFC 8659. As a result, the RFC 8657 account-binding and validation-method-binding protections are not enforced end-to-end on Universal SSL zones. Successful exploitation could result in issuance of a browser-trusted TLS certificate to an attacker, enabling MITM against the affected domain. Exploitation is non-trivial in practice: an attacker would need to hold an ACME account at one of the Certificate Authorities in the served CAA RRset and to simultaneously satisfy domain control validation across the multiple geographically distinct Network Perspectives the CA relies on for Multi-Perspective Issuance Corroboration. Cloudflare prefixes are anycast-announced from hundreds of locations globally, raising the bar against single-vantage-point BGP hijacks. Any resulting misissuance of a browser-trusted certificate is subject to Certificate Transparency logging required by major browsers, and would be visible to CT monitoring. Mitigation: Customers requiring strict RFC 8657 enforcement need to disable Universal SSL on the affected zone. Universal SSL's automatic CAA management and customer-set RFC 8657 accounturi and validationmethods enforcement are mutually exclusive by the nature of the issue, so there is no in-product workaround that preserves both. Certificate Transparency monitoring is recommended for all customers as a general detection control. Credits: David Osipov (ORCID: https://orcid.org/0009-0005-2713-9242), independent researcher
Out of bounds read and write in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.