aramco
Company Details
Linkedin ID:
aramco
Website:
Employees number:
161,219
Number of followers:
6,956,200
NAICS:
211
Industry Type:
Homepage:
https://www.aramco.com
IP Addresses:
0
Company ID:
ARA_8392859
Scan Status:
In-progress
aramco Company CyberSecurity Posture
https://www.aramco.com
We’re a leading producer of the energy and chemicals that drive global commerce and enhance the daily lives of people around the globe by continuing delivering an uninterrupted supply of energy to the world. Our resilience and agility has built one of the world’s largest integrated energy and chemicals companies. And we are part of the global effort toward building a low carbon economy. Our horizon has never been clearer.
aramco A.I CyberSecurity Scoring
aramco Risk Score (AI oriented)Between 800 and 849
aramco
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
aramco Global Score (TPRM)XXXX
aramco
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
aramco Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
aramco
Ransomware
Rankiteo Explanation
Attack threatening the organization's existence
Description: Saudi Aramco fell prey to a ransomware attack in July 2021 that slightly disrupted its operations. The attackers gained the access to its systems and stole some of the company's files. Apparently, hackers had about 1 terabyte of Saudi Arabian Oil Co. data and demanded a ransom of about $50 million in cryptocurrency to delete it.
aramco Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for aramco
Incidents vs Oil and Gas Industry Average (This Year)
No incidents recorded for aramco in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for aramco in 2025.
Incident Types aramco vs Oil and Gas Industry Avg (This Year)
No incidents recorded for aramco in 2025.
Incident History — aramco (X = Date, Y = Severity)
aramco cyber incidents detection timeline including parent company and subsidiaries
aramco Company Subsidiaries
We’re a leading producer of the energy and chemicals that drive global commerce and enhance the daily lives of people around the globe by continuing delivering an uninterrupted supply of energy to the world. Our resilience and agility has built one of the world’s largest integrated energy and chemicals companies. And we are part of the global effort toward building a low carbon economy. Our horizon has never been clearer.
Loading...
aramco Similar Companies
Cameron, a Schlumberger company
Cameron is a SLB company. For updates and information, please follow the main SLB company page on LinkedIn at: https://www.linkedin.com/company/slbglobal/ Cameron, a SLB company, is a leading provider of flow equipment products, systems and services to worldwide oil, gas and process industries. Lev
McDermott International, Ltd
McDermott is a premier provider of engineering and construction solutions to the energy industry. Our customers trust our technology-driven approach—engineered to responsibly harness and transform global energy resources into the products the world needs for now and what’s next. From concept to co
TotalEnergies
Have you ever thought of offering your skills and expertise to a multinational company? Give your best to better energy and make the commitment with TotalEnergies. With over 500-plus professions in 130 countries, we offer high safety and environmental standards, strong ethical values, an innovatio
Ecopetrol
Ecopetrol (NYSE: EC) es la compañía más grande en Colombia y uno de los principales grupos de energía de Latinoamérica. Cuenta con más de 18.000 empleados y es responsable del 60% de la producción de hidrocarburos en Colombia. Es propietaria de las dos refinerías del Colombia y de la gran parte de l
Transocean
Transocean is a leading international provider of offshore contract drilling services for oil and gas wells. The company specializes in technically demanding sectors of the global offshore drilling business, with a particular focus on ultra-deepwater and harsh environment drilling services and opera
Petrobras
Nosso propósito é prover energia que assegure prosperidade de forma ética, justa, segura e competitiva. Queremos ser a melhor empresa diversificada e integrada de energia na geração de valor, construindo um mundo mais sustentável, conciliando o foco em óleo e gás com a diversificação em negócios de
At Repsol, we are at the forefront of the energy sector to build the future of energy with innovation and sustainability. We are a strong multienergy company that creates value in an integrated, diversified, and sustainable way to promote progress in society. We leverage our past experience to be pr
At Enbridge, our goal is to be the first-choice energy delivery company in North America and beyond—for customers, communities, investors, regulators and policymakers, and employees. We also recognize the importance of a secure, reliable and affordable supply of energy, which we deliver every day th
Baker Hughes (NASDAQ: BKR) is an energy technology company that provides solutions for energy and industrial customers worldwide. Built on a century of experience and conducting business in over 120 countries, our innovative technologies and services are taking energy forward – making it safer, clea
.png)
aramco CyberSecurity News
December 10, 2025 01:14 PM
Saudi Aramco Unit, KPMG Partner to Boost Cybersecurity in Saudi Arabia
Saudi Arabian Oil Co. , d/b/a Saudi Aramco, via Cyberani by Aramco Digital signed a strategic deal with KPMG Middle East to support Saudi...
December 10, 2025 09:45 AM
Cyberani by Aramco Digital and KPMG join forces to build Saudi Arabia’s cybersecure future at Black Hat 2025
Highlights the Kingdom's growing influence in shaping the global cybersecurity landscape.
June 23, 2025 07:00 AM
Digital transformation to boost Saudi industrial productivity by up to 25%, says Aramco CEO
Integrating digital technologies is set to increase Saudi Arabia's industrial productivity by 15 to 25 percent, according to Aramco President and CEO Amin...
March 17, 2025 07:00 AM
Saudi Arabia grants Tier 1 cybersecurity licenses to six MSOC providers
Saudi Arabia's National Cybersecurity Authority (NCA) has granted Tier 1 licenses to six companies to provide Managed Security Operations...
February 11, 2025 08:00 AM
LEAP 2025: AI, smart lenses, and wearable tech take center stage
Advanced technologies and innovative solutions were in focus at LEAP 2025, showcasing ideas that could shape industries and the future.
January 13, 2025 08:00 AM
New Honeywell cybersecurity services center launches in Saudi Arabia’s Jubail to enhance industrial protection
Honeywell (NASDAQ: HON) has launched a new center in Jubail, Saudi Arabia, dedicated to providing localized Honeywell cybersecurity...
December 25, 2024 08:00 AM
Top 10 Tech Internships Offered in Saudi Arabia
Top tech internships, such as those at KAUST, Saudi Aramco, STC, and Microsoft, offer hands-on experience in AI, data science, and cloud computing.
December 05, 2024 08:00 AM
Top 10: CISOs
With CISOs leading the security posture of a company, Cyber Magazine examines the top 10 CISOs who exemplify excellence in the field.
October 03, 2024 07:00 AM
Aramco Digital aims to make Saudi Arabia a cybersecurity, AI leader, says top executive
Aramco Digital is at the forefront of Saudi Arabia's shift toward a technology-driven economy, implementing key initiatives in cybersecurity, 5G infrastructure...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
aramco CyberSecurity History Information
Official Website of aramco
The official website of aramco is https://www.aramco.com.
aramco’s AI-Generated Cybersecurity Score
According to Rankiteo, aramco’s AI-generated cybersecurity score is 818, reflecting their Good security posture.
How many security badges does aramco’ have ?
According to Rankiteo, aramco currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does aramco have SOC 2 Type 1 certification ?
According to Rankiteo, aramco is not certified under SOC 2 Type 1.
Does aramco have SOC 2 Type 2 certification ?
According to Rankiteo, aramco does not hold a SOC 2 Type 2 certification.
Does aramco comply with GDPR ?
According to Rankiteo, aramco is not listed as GDPR compliant.
Does aramco have PCI DSS certification ?
According to Rankiteo, aramco does not currently maintain PCI DSS compliance.
Does aramco comply with HIPAA ?
According to Rankiteo, aramco is not compliant with HIPAA regulations.
Does aramco have ISO 27001 certification ?
According to Rankiteo,aramco is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of aramco
aramco operates primarily in the Oil and Gas industry.
Number of Employees at aramco
aramco employs approximately 161,219 people worldwide.
Subsidiaries Owned by aramco
aramco presently has no subsidiaries across any sectors.
aramco’s LinkedIn Followers
aramco’s official LinkedIn profile has approximately 6,956,200 followers.
NAICS Classification of aramco
aramco is classified under the NAICS code 211, which corresponds to Oil and Gas Extraction.
aramco’s Presence on Crunchbase
No, aramco does not have a profile on Crunchbase.
aramco’s Presence on LinkedIn
Yes, aramco maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/aramco.
Cybersecurity Incidents Involving aramco
As of December 14, 2025, Rankiteo reports that aramco has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
aramco has an estimated 10,552 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at aramco ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
Incident Details
Can you provide details on each incident ?
Title: Saudi Aramco Ransomware Attack
Description: Saudi Aramco fell prey to a ransomware attack in July 2021 that slightly disrupted its operations. The attackers gained access to its systems and stole some of the company's files. Hackers had about 1 terabyte of Saudi Arabian Oil Co. data and demanded a ransom of about $50 million in cryptocurrency to delete it.
Date Detected: July 2021
Type: Ransomware
Motivation: Financial Gain
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware ARA182216322
Data Compromised: 1 terabyte of company data
Operational Impact: Slight disruption
Which entities were affected by each incident ?
Incident : Ransomware ARA182216322
Entity Name: Saudi Aramco
Entity Type: Company
Industry: Oil and Gas
Location: Saudi Arabia
Data Breach Information
What type of data was compromised in each breach ?
Incident : Ransomware ARA182216322
Ransomware Information
Was ransomware involved in any of the incidents ?
Additional Questions
General Information
What was the amount of the last ransom demanded ?
Last Ransom Demanded: The amount of the last ransom demanded was $50 million.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on July 2021.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were 1 terabyte of company data and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was 1 terabyte of company data.
Ransomware Information
What was the highest ransom demanded in a ransomware incident ?
Highest Ransom Demanded: The highest ransom demanded in a ransomware incident was $50 million.
.png)
Latest Global CVEs (Not Company-Specific)
Description
A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This vulnerability affects unknown code of the file /pet1/addcnp.php. This manipulation of the argument cnpname causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function image_check of the component httpd. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high complexity level is associated with this attack. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited.
Risk Information
cvss2
Base: 2.6
Severity: HIGH
AV:N/AC:H/Au:N/C:N/I:P/A:N
cvss3
Base: 3.7
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/update_student.php. This manipulation of the argument stud_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A security flaw has been discovered in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/save_user.php. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument user_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=aramco' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
