TRU A.I CyberSecurity Scoring
03/04/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for Toys R Us in 2026.
No incidents recorded for Toys R Us in 2026.
No incidents recorded for Toys R Us in 2026.
Retail
Zara is a forward-thinking force in fashion; embodying what is possible when responsibility and aspiration are accessible to all. By bringing more thoughtful style to the world, we aim to provide everyone, no matter where they are, with the inspiringly beautiful, always on-trend, responsibly crafted fashion they deserve. We are curious by nature and driven by creativity. Always moving forward, we seek more —beyond limits, beyond the expected. Among us, beauty is diverse and individual, expressed through open, kind, vibrant and outgoing personalities. This is an invitation to explore your own path with us.
Ace Hardware is the largest retailer-owned hardware cooperative in the world with over 5,800 locally owned and operated hardware stores in approximately 70 countries. Headquartered in Oak Brook, Ill., Ace and its subsidiaries operate an expansive network of distribution centers in the U.S. and have distribution capabilities in Ningbo, China; and Santa Catarina, Mexico. Since 1924, Ace has become a part of local communities around the world and known as the place with the helpful hardware folks. For more information, visit acehardware.com or newsroom.acehardware.com.
At Costa Coffee, we’ve been crafting with heart and changing the coffee game since 1971. Now part of The Coca-Cola Company, we proudly operate in over 50 countries, and we’re still growing! And we’re much more than our beloved stores. Consumers all over the world can now enjoy Costa Coffee in our Ready-To-Drink range, our innovative self-serve machines, including Express, or our thriving At Home offering. And let’s not forget our global partnerships that help us trailblaze new markets and spaces every single day. Here at Costa, we’re all about reimagining coffee experiences to make a difference.*** Along with our growth ambitions, we really do care about the communities we serve. From local charity partners, to coffee farmers and our much-loved Costa Foundation, making a difference is part of who we are. At the heart of our culture are our values: discipline, passion, warmth, courage, and trust. We are Disciplined to Deliver, have a Passion for Progress, we Win with Warmth, have the Courage to Challenge, and are Trusted Team Players. For us, it’s about creating a supportive and inclusive environment where everyone can be themselves, take on new challenges and enjoy some amazing career experiences. Sound like your cup of coffee? Take a look at our latest opportunities below. https://costacareers.co.uk/
For over five decades, Landmark Group has shaped the region’s retail and hospitality landscape-growing from a single store in Bahrain to one of the largest and most successful omnichannel and hospitality groups across the Middle East, Asia and Africa. Rooted in purpose and powered by innovation, we bring together 21 trusted brands — including own brands like Centrepoint, Max, Home Centre, Babyshop, Splash, Shoemart, Lifestyle, VIVA, Citymax and more- spanning fashion, home, fitness, and hospitality. With over 2,500 stores across 15 countries, we live our purpose every day: creating exceptional value for all the lives we touch. Driven by a customer-first philosophy, we place strong emphasis on enriching every interaction. Through our portfolio of loyalty programmes, Shukran and Landmark Rewards, we connect with over 35 million active members, offering exclusive rewards and meaningful experiences across our brands and partners. At Landmark, we believe our greatest strength lies in our people. Our success is powered by talented and passionate Landmarkers who bring diverse perspectives, creativity, and expertise to everything they do. With over 53,000 employees from almost 100 nationalities, we continue to build a culture of growth, innovation, and shared purpose, living the group's values collectively of listening, empowering, adapting and delivering with integrity.
We are one of the largest food retail companies in Brazil. We were pioneers with a multi-format and multi-channel business model that brings together renowned chains and brands such as Pão de Açúcar and Extra, Minuto Pão de Açúcar, Pão de Açúcar Fresh and Mini Extra. In addition to our own and exclusive brands Qualitá, Taeq and Club des Sommeliers. We have more than 765 physical stores and are leaders in food e-commerce in Brazil, working tirelessly to be the best choice for our customers and the pride of our team. We are driven by a passion to serve and win. Our people are committed to our values to offer the best shopping experience in our stores. In all areas, regardless of role or position, everyone is focused on serving and delighting our customers every day.
We’re Team Kmart, on a mission to make everyday living brighter for our customers by improving the Kmart shopping experience – every time and everywhere they engage with us. For over fifty years now, we’ve been spreading the Kmart love to families of all shapes and sizes in Australia, then New Zealand, and now right across the world! We’re the place where families come first for the lowest prices on everyday items – it’s our vision and it’s what we do with passion. Today, Kmart has more than 300 stores across Australia and New Zealand and is recognised as one of the most profitable discount department stores in Australia. With over 40,000 Kmart superstars who are all focused on giving our customers the products that they love at the lowest prices, it truly is an exciting time to be a part of our Kmart family – and there’s never been a better time to join us then now! To find out more information, scroll through our LinkedIn page, or, we’d be happy to welcome you online at www.kmart.com.au Did you know we’re a part of something bigger? Owned by Wesfarmers Limited, the Kmart Group family comprises of Kmart Australia and New Zealand, Target Australia, Catch Australia and KAS Group Asia. The Group operates 520 stores across Australia and New Zealand, has offices in Australia and around the world, and employs more than 46,000 team members all focused on delivering products that our customers love. Together, the Kmart Group is creating an even more satisfying shopping experience for all of our customers, no matter where they are in the world.
Dollarama was founded by third-generation retailer and Canadian entrepreneur, Larry Rossy. It all started with one store, in Matane, Quebec, in 1992, and quickly grew over the next two decades to become a household name and shopping destination for Canadians from coast to coast. Dollarama today is a recognized Canadian value retailer with well over 1,300 locations, led by Neil Rossy, fourth-generation retailer and member of Dollarama’s founding management team. Dollarama aims to provide customers with a consistent shopping experience and compelling value, offering a broad assortment of general merchandise, consumables and seasonal items. All stores are corporately-owned and operated, and are conveniently located in metropolitan areas, mid-sized cities and small towns. Products are available in individual or multiple units at low, fixed price points.
Our mission at Circle K is to make our customers' lives a little easier every day. We are part of communities across North America, Europe, Asia, and the Middle East, helping us grow into one of the world’s leading convenience and fuel retail businesses. Our parent company, Alimentation Couche-Tard (“Couche-Tard”), is a leader in the Canadian convenience store industry. Together, we are brightening journeys across more than 14,200 stores in 26 countries worldwide. We’re all about Growing Together. Learn how you can join our team today: https://workwithus.circlek.com. Work with us, and we’ll make it work for you. Find out more at https://www.circlek.com/ or connect with us on Facebook, Instagram, or Twitter.
B&M is a fast-growing discount retailer, operating from over 750 high street and out of town stores across the UK, with a team of over 38,000! In the UK, we offer customers a broad range of FMCG brands and non-grocery products at sensational prices. Our aim is to provide customers with a fun and exciting shopping experience, offering them great products and fantastic value so that they return again and again to a B&M store. Our success is down to our customers and built on “word of mouth” – with an average 5 million customer transactions across our stores each week. We spend next to nothing on advertising so that we can focus on keeping the prices of our products as low as possible. The Group also owns a chain of over 100 general merchandise and grocery stores in France under the B&M brand. Our Heron Foods business operates over 300 discount convenience stores in England and Wales. To find out more about joining one of the UK’s fastest growing retailers, please visit our website www.bmstores.co.uk/careers
Latest updates, reports, and threat intel affecting the global network.
A toy store in Kitchener faces an uncertain future. A large 'For Sale' sign has been placed in front of the Toys “R” Us location on Fairway...
Toys “R” Us Canada, a staple of the country's retail landscape for decades, is undergoing a dramatic contraction. At least 38 stores have...
Toys “R” Us Canada is notifying customers of a data breach that leaked their personal details after threat actors published the stolen...
Two former employees of cybersecurity firms that sold services helping companies combat hackers have been indicted and accused of...
Toys “R” Us Canada, a subsidiary of the American toy giant, has confirmed a data breach after threat actors leaked the stolen customer...
Good morning readers, and happy Monday. The Ravens didn't play this weekend, but the World Series made for more than enough excitement.
Hacktivists have breached Canadian critical infrastructure systems to meddle with controls that could have led to dangerous conditions,...
Global marketing giant Dentsu is writing to current and former staff after a cyberattack on a subsidiary led to bank, payroll,...
Toys “R” Us Canada has notified its customers of a serious data breach that exposed personal information from its databases. The Canadian toy retailer sent...
HedgeDoc is an open source, real-time collaborative markdown notes application. Prior to 1.11.0, the GitHub Gist export flow created an OAuth2 state value but only checked that it was present rather than validating it against the value expected for the user's session. Because the state was not properly validated, an attacker could forge a callback URL containing their own valid GitHub OAuth code. When processing the callback, HedgeDoc used the victim's logged-in session to select which note to export, but the attacker's authorization code to determine which GitHub account received it. As a result, a logged-in victim who clicked a crafted link could export their own private, protected, or limited note directly into a Gist controlled by the attacker. This issue has been fixed in version 1.11.0.
HedgeDoc is an open source, real-time, collaborative, markdown notes application. Prior to version 1.11.0, HedgeDoc was vulnerable to a YAML alias bomb due to unsafe processing of the note frontmatter. HedgeDoc parsed frontmatter with js-yaml.load (js-yaml v3) via @hedgedoc/meta-marked, which resolved YAML anchor aliases. A compact malicious payload could therefore expand into a huge object structure, consuming excessive CPU. This expansion ran on every request to the publish view (/s/<shortid>) and, when placed under the opengraph key, the editor view (/<noteId>). A ten-level alias bomb could block the single Node.js event loop for roughly 235 seconds per request, causing concurrent requests to hang or drop and rendering the instance unavailable (DoS). Because the note was stored in the database, the impact survived process restarts until the note was removed. toobusy-js did not reliably mitigate the worst cases, as the event loop was saturated before the middleware could respond. This issue was fixed in version 1.11.0.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hv_exts. When building the extension hash (via extensions(), extensions_by_long_name(), extensions_by_oid(), or has_extension_oid()), the code passes OBJ_obj2txt()'s return value as the hash-key length; because that value is the OID's full text length rather than the bytes written to the fixed-size buffer (129 bytes), an OID whose text is longer than the 129-byte buffer causes a read past the allocation, exposing adjacent heap memory as the returned hash key. extensions_by_name() uses the static shortname path and is not affected.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow denial of service via NULL pointer dereference. X509V3_EXT_d2i(ext) returns NULL when an extension's DER value fails to parse. basicC, ia5string, and auth_att dereference its result without a NULL check. keyid_data also dereferences akid->keyid, which is NULL for an empty AKI SEQUENCE (DER 30 00) even when the parse succeeds. A caller invoking an affected helper on an extension from an untrusted certificate triggers a SIGSEGV that crashes the Perl process.
Cockpit CMS contains a path traversal vulnerability in the Bucket file storage API (/system/buckets/api). The api() method in modules/System/Controller/Buckets.php sanitizes the bucket name with preg_replace('/[^a-zA-Z0-9-_\\.]/','', $bucket), which permits '..' and '../' sequences. The sanitized value is interpolated into a Flysystem path as uploads://buckets/{bucket}. Flysystem's WhitespacePathNormalizer resolves 'buckets/..' to the empty string (the uploads storage root) without raising PathTraversalDetected because the '..' has a preceding component to consume. An authenticated low-privileged user can send a crafted request with a '../' bucket name to list, upload, and delete files across all buckets, including those belonging to other users or roles
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.