GoTo Foods
Company Details
Linkedin ID:
focus-brands
Website:
Employees number:
17,535
Number of followers:
67,079
NAICS:
722
Industry Type:
Homepage:
gotofoods.com
IP Addresses:
0
Company ID:
GOT_2714483
Scan Status:
In-progress
GoTo Foods Company CyberSecurity Posture
gotofoods.com
Atlanta-based GoTo Foods (formerly known as Focus Brands) is a leading developer of global multi-channel foodservice brands. As of December 31, 2023, GoTo Foods, through its affiliate brands, is the franchisor and operator of more than 6,700 restaurants, cafes, ice cream shoppes, and bakeries in all 50 states and over 60 countries and territories under the Auntie Anne’s®, Carvel®, Cinnabon®, Jamba®, Moe’s Southwest Grill®, McAlister’s Deli®, and Schlotzsky’s® brand names, as well as the Seattle’s Best Coffee® brand on certain military bases and in certain international markets. GoTo Foods is proud to be Certified™ by Great Place To Work®, the most definitive “employer-of-choice” recognition and the only recognition based entirely on what employees report about their workplace experience. Please visit www.gotofoods.com to learn more. As a leading developer of iconic food-service brands around the globe, we know our company is only as strong as our people. And that’s why we’re committed to providing our associates with a work environment that encourages and supports innovation, collaboration, and fun! From our unique family culture to our focus on personal development, a career with GoTo Foods is anything but ordinary. We rely on the unique attributes and experiences each of our associates has to offer, we remain focused on providing every individual with continuous opportunities to grow their skills, develop their talents, and unlock their potential as part of a collaborative and supportive team. We’re unleashing the power of our brands with the passion of our people – and we want you to join us!
GoTo Foods A.I CyberSecurity Scoring
GoTo Foods Risk Score (AI oriented)Between 750 and 799
GoTo Foods
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
GoTo Foods Global Score (TPRM)XXXX
GoTo Foods
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
GoTo Foods Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
McAlister's Corporation
Breach
Rankiteo Explanation
Attack limited on finance or reputation
Description: The Iowa Attorney General's Office disclosed a **data breach** affecting **FOCUS Brands Inc.**, specifically its subsidiaries McAlister's Corporation, Moe's Stores LLC, and Schlotzsky's Stores LLC. The incident involved **unauthorized malicious code** deployed on point-of-sale (POS) systems at both corporate and franchised restaurant locations. The breach occurred between **April 11, 2019, and July 22, 2019**, during which **payment card data**—including card numbers, expiration dates, and potentially CVV codes—was compromised. While the exact number of affected individuals remains **unknown**, the exposure targeted customers who dined at the impacted restaurants during the specified period. The breach did not involve internal employee data or broader corporate systems but focused solely on **financial transaction data** linked to customer payments. The company took remedial actions, including removing the malicious code and enhancing security protocols, though the delay in detection (nearly three months) raised concerns about vulnerability management. No evidence suggested the stolen data was used for fraud at the time of reporting, but the **potential for financial fraud** and reputational harm persisted due to the nature of the compromised information.
GoTo Foods Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for GoTo Foods
Incidents vs Food and Beverage Services Industry Average (This Year)
No incidents recorded for GoTo Foods in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for GoTo Foods in 2025.
Incident Types GoTo Foods vs Food and Beverage Services Industry Avg (This Year)
No incidents recorded for GoTo Foods in 2025.
Incident History — GoTo Foods (X = Date, Y = Severity)
GoTo Foods cyber incidents detection timeline including parent company and subsidiaries
GoTo Foods Company Subsidiaries
Atlanta-based GoTo Foods (formerly known as Focus Brands) is a leading developer of global multi-channel foodservice brands. As of December 31, 2023, GoTo Foods, through its affiliate brands, is the franchisor and operator of more than 6,700 restaurants, cafes, ice cream shoppes, and bakeries in all 50 states and over 60 countries and territories under the Auntie Anne’s®, Carvel®, Cinnabon®, Jamba®, Moe’s Southwest Grill®, McAlister’s Deli®, and Schlotzsky’s® brand names, as well as the Seattle’s Best Coffee® brand on certain military bases and in certain international markets. GoTo Foods is proud to be Certified™ by Great Place To Work®, the most definitive “employer-of-choice” recognition and the only recognition based entirely on what employees report about their workplace experience. Please visit www.gotofoods.com to learn more. As a leading developer of iconic food-service brands around the globe, we know our company is only as strong as our people. And that’s why we’re committed to providing our associates with a work environment that encourages and supports innovation, collaboration, and fun! From our unique family culture to our focus on personal development, a career with GoTo Foods is anything but ordinary. We rely on the unique attributes and experiences each of our associates has to offer, we remain focused on providing every individual with continuous opportunities to grow their skills, develop their talents, and unlock their potential as part of a collaborative and supportive team. We’re unleashing the power of our brands with the passion of our people – and we want you to join us!
Loading...
GoTo Foods Similar Companies
The Kraft Heinz Company is one of the largest food and beverage companies in the world, with eight $1 billion+ brands and global sales of approximately $25 billion. We’re a globally trusted producer of high-quality, great-tasting, and nutritious foods for over 150 years. While Kraft Heinz is co-head
US Foods
US Foods is one of America’s great food companies and a leading foodservice distributor, partnering with approximately 300,000 restaurants and foodservice operators to help their businesses succeed. With 28,000 associates and more than 70 locations, US Foods provides its customers with a broad and
HMSHost
HMSHost is recognized by the industry as the leader in travel dining with awards such as Restaurateur with the Highest Regard for Customer Service and Best Brand Restaurateur for Shake Shack by Airport Experience News. USA Today 10Best Readers’ Choice Travel Awards gave first place honors to both of
Uni-President Cor. Ltd.
Uni-President China Holdings Limited is the second largest tea, largest milk tea ready-to-drink, and the second largest instant noodle manufacturer and supplier in China. It is the Mainland China subsidiary of Uni-President Enterprises Corporation, the largest processed food producer in Taiwan. The
Coca-Cola Beverages Africa
CCBA is the eighth largest Coca-Cola authorised bottler in the world by revenue, and the largest on the continent. It accounts for over 40% of all Coca-Cola ready-to-drink beverages sold in Africa by volume. With over 14,000 employees in Africa, CCBA group services more than 800,000 customers with
Sigma
We are a global food company dedicated to bringing local favorite foods to communities everywhere. Within 17 countries, we offer quality branded food at a range of price points and across diverse categories. We're a company dedicated to the production, distribution and sales of refrigerated and fr
Nestlé Nespresso SA
Coffee is at the heart of everything we do, and consumer satisfaction is why we do it. Our story started with one simple idea: everyone should be able to make the perfect cup of coffee at home. Something we still believe today, which is why we think delivering the highest quality coffee, sip after
Frito-Lay
We believe every consumer should have access to their favorite snack, everywhere. We own the manufacturing process from seed to shelf and actively invest in technology to automate key steps of the process. This helps us be more agile in what we need to make, who we need to make it for, and how we ca
We are one of the leading global producers and exporters of quality food, as we believe it is fundamental to a better life for all people. Not only what we do, but the way we do it, is guided by the purpose of a better life for everyone, from farm to fork. That is why we conduct a sustainable mana
.png)
GoTo Foods CyberSecurity News
November 25, 2025 03:55 PM
Food company VP’s alleged racist rant claiming its soup comes ‘from a 3D printer’ caught on video
A former Campbell's employee has sued the company for employment discrimination and retaliation, claiming he was fired for reporting...
November 15, 2025 08:00 AM
Nevada lawmakers advance cybersecurity and food assistance bills during special session
Nevada lawmakers continued discussions on multiple issues during the state's special session this weekend, with significant movement on...
October 29, 2025 07:00 AM
When Innovation Meets Regulation: Cybersecurity in Novel Food Technologies
Key takeaways: Protect process intelligence early. Treat pilot‑plant data and digital recipes as crown jewels, and design access, logging,...
October 13, 2025 07:00 AM
Cybersecurity Becomes a National Priority for America’s Food and Agriculture Sector
Cyber threats are increasingly targeting the systems that keep America's food and agriculture industries running—from grain elevators and...
September 04, 2025 07:00 AM
How the newest ISAC aims to help food and agriculture firms thwart cyberattacks
Food industry executives used to shrug off ransomware and cyber-espionage risks. A threat intel group is helping to change that,...
September 03, 2025 07:00 AM
Erin Andrews Shares Which Fast-Food Chain Is Her Go-To for Relieving Stress — and What She Orders (Exclusive)
Erin Andrews is getting candid about her go-to comfort food. The sports commentator, 47, dished all about the fast-food chain she hits up...
August 11, 2025 07:00 AM
Families suffer as $12 billion stolen from food assistance programs, USDA says
ATLANTA (Atlanta News First) — The U.S. Department of Agriculture (USDA) suspects taxpayer dollars stolen from government food assistance...
June 12, 2025 07:00 AM
Whole Foods sees shortages after United Natural Foods cyberattack
A cyberattack on a primary organic food distributor has led to empty shelves at Whole Foods stores across the country.
June 10, 2025 07:00 AM
Grocery stores see disruptions following security breach at major food supplier
Several Minnesota grocery stores and pharmacies are seeing disruptions this week as United Natural Foods, Inc. addresses a cyberattack.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
GoTo Foods CyberSecurity History Information
Official Website of GoTo Foods
The official website of GoTo Foods is http://www.gotofoods.com.
GoTo Foods’s AI-Generated Cybersecurity Score
According to Rankiteo, GoTo Foods’s AI-generated cybersecurity score is 783, reflecting their Fair security posture.
How many security badges does GoTo Foods’ have ?
According to Rankiteo, GoTo Foods currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does GoTo Foods have SOC 2 Type 1 certification ?
According to Rankiteo, GoTo Foods is not certified under SOC 2 Type 1.
Does GoTo Foods have SOC 2 Type 2 certification ?
According to Rankiteo, GoTo Foods does not hold a SOC 2 Type 2 certification.
Does GoTo Foods comply with GDPR ?
According to Rankiteo, GoTo Foods is not listed as GDPR compliant.
Does GoTo Foods have PCI DSS certification ?
According to Rankiteo, GoTo Foods does not currently maintain PCI DSS compliance.
Does GoTo Foods comply with HIPAA ?
According to Rankiteo, GoTo Foods is not compliant with HIPAA regulations.
Does GoTo Foods have ISO 27001 certification ?
According to Rankiteo,GoTo Foods is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of GoTo Foods
GoTo Foods operates primarily in the Food and Beverage Services industry.
Number of Employees at GoTo Foods
GoTo Foods employs approximately 17,535 people worldwide.
Subsidiaries Owned by GoTo Foods
GoTo Foods presently has no subsidiaries across any sectors.
GoTo Foods’s LinkedIn Followers
GoTo Foods’s official LinkedIn profile has approximately 67,079 followers.
NAICS Classification of GoTo Foods
GoTo Foods is classified under the NAICS code 722, which corresponds to Food Services and Drinking Places.
GoTo Foods’s Presence on Crunchbase
No, GoTo Foods does not have a profile on Crunchbase.
GoTo Foods’s Presence on LinkedIn
Yes, GoTo Foods maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/focus-brands.
Cybersecurity Incidents Involving GoTo Foods
As of December 11, 2025, Rankiteo reports that GoTo Foods has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
GoTo Foods has an estimated 8,495 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at GoTo Foods ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
How does GoTo Foods detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an communication strategy with public disclosure via iowa attorney general's office..
Incident Details
Can you provide details on each incident ?
Title: Data Breach at FOCUS Brands Inc. (McAlister's, Moe's, Schlotzsky's)
Description: The Iowa Attorney General's Office reported a data breach involving FOCUS Brands Inc., specifically McAlister's Corporation, Moe's Stores LLC, and Schlotzsky's Stores LLC. The breach involved unauthorized code targeting payment card data at corporate and franchised restaurants from April 11, 2019, to July 22, 2019. The specific individuals affected are unknown.
Date Publicly Disclosed: 2019-10-02
Type: Data Breach
Attack Vector: Unauthorized code (likely malware or skimming)
Motivation: Financial gain (payment card data theft)
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach GOT724082025
Data Compromised: Payment card data
Systems Affected: Point-of-Sale (POS) systems at corporate and franchised restaurants
Brand Reputation Impact: Potential reputational damage due to payment card data exposure
Identity Theft Risk: High (payment card data exposed)
Payment Information Risk: High (directly targeted)
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Payment Card Data and .
Which entities were affected by each incident ?
Incident : Data Breach GOT724082025
Entity Name: FOCUS Brands Inc.
Entity Type: Parent Company
Industry: Food & Beverage (Restaurant Franchising)
Location: United States
Customers Affected: Unknown (payment card data at risk)
Incident : Data Breach GOT724082025
Entity Name: McAlister's Corporation
Entity Type: Subsidiary/Franchise
Industry: Fast Casual Restaurants
Location: United States
Customers Affected: Unknown
Incident : Data Breach GOT724082025
Entity Name: Moe's Stores LLC
Entity Type: Subsidiary/Franchise
Industry: Fast Casual Restaurants
Location: United States
Customers Affected: Unknown
Incident : Data Breach GOT724082025
Entity Name: Schlotzsky's Stores LLC
Entity Type: Subsidiary/Franchise
Industry: Fast Casual Restaurants
Location: United States
Customers Affected: Unknown
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach GOT724082025
Communication Strategy: Public disclosure via Iowa Attorney General's Office
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach GOT724082025
Type of Data Compromised: Payment card data
Number of Records Exposed: Unknown
Sensitivity of Data: High
Data Exfiltration: Likely (payment card data targeted)
Personally Identifiable Information: Potentially (if linked to payment cards)
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Data Breach GOT724082025
Regulatory Notifications: Reported to Iowa Attorney General's Office
References
Where can I find more information about each incident ?
Incident : Data Breach GOT724082025
Source: Iowa Attorney General's Office
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Iowa Attorney General's Office.
Investigation Status
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Public disclosure via Iowa Attorney General's Office.
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Data Breach GOT724082025
High Value Targets: Payment Card Data,
Data Sold on Dark Web: Payment Card Data,
Additional Questions
Incident Details
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2019-10-02.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Payment card data and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was Point-of-Sale (POS) systems at corporate and franchised restaurants.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was Payment card data.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Iowa Attorney General's Office.
.png)
Latest Global CVEs (Not Company-Specific)
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Description
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
Risk Information
cvss3
Base: 8.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
Description
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Risk Information
cvss3
Base: 5.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=focus-brands' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
