Preeminent research and development organization. Inventor of the transistor, the laser, C programming language, UNIX.
Established in 1964, BHEL is one of India's largest engineering and manufacturing enterprises in the energy and infrastructure sectors, and a leading power equipment manufacturer globally. BHEL serves the core sectors of the economy and provides a comprehensive portfolio of products, systems and services to customers in power, transmission, transportation, renewables, water, defence & aerospace, oil & gas, and industry. BHEL has created value for its stakeholders due to the scale and depth of its operations, rich experience, competent manpower, innovative ecosystem, diverse product-mix and focus on sustainable business solutions. BHEL’s greatest asset- its highly skilled and committed workforce of more than 34,000 employees is the cornerstone of its success. BHEL’s commitment to nation building reflects in many ways- in its contribution to the country’s installed power generation capacity; bringing the latest state-of-the-art technology to the country; consistent highest expenditure of more than 2.5% of its turnover on R&D and innovation in the Indian engineering segment; pan-India presence; establishment of world-class assets with presence in over 84 country across the globe, and contribution to the society at large through initiatives in skilling youth, health & hygiene, education, cleanliness and environment protection, to name a few. With a widespread network of 16 manufacturing facilities, 2 repair units, 4 regional offices, 8 service centres, 1 subsidiary, 3 active joint ventures, 15 regional marketing centres, 3 overseas offices and current project execution at more than 150 project sites across India and abroad, BHEL manufactures a wide range of high quality & reliable products adhering to national & international standards. BHEL has installed over 1000 utility sets worldwide with its installed base of supplied power generating equipment exceeding 185 GW. BHEL has also commissioned 200+ electric substations & 5 major HVDC projects in the country.
Security & Compliance Standards Overview
No incidents recorded for AT&T Bell Laboratories Alumni in 2026.
No incidents recorded for Bharat Heavy Electricals Limited in 2026.
AT&T Bell Laboratories Alumni cyber incidents detection timeline including parent company and subsidiaries
Bharat Heavy Electricals Limited cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
The WP Go Maps (formerly WP Google Maps) plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the processBackgroundAction() function in all versions up to, and including, 10.0.04. This makes it possible for authenticated attackers, with Subscriber-level access and above, to modify global map engine settings.
The Save as PDF Plugin by PDFCrowd plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘options’ parameter in all versions up to, and including, 4.5.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link. NOTE: Successful exploitation of this vulnerability requires that the PDFCrowd API key is blank (also known as "demo mode", which is the default configuration when the plugin is installed) or known.
The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable to arbitrary file uploads due to incorrect file type validation in the action_import_module() function in all versions up to, and including, 7.8.9.2. This makes it possible for authenticated attackers, with a lower-privileged role (e.g., Subscriber-level access and above), to upload arbitrary files on the affected site's server which may make remote code execution possible. Successful exploitation requires an admin to grant Hustle module permissions (or module edit access) to the low-privileged user so they can access the Hustle admin page and obtain the required nonce.
The WP Directory Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.9 via the wdk_public_action AJAX handler. This makes it possible for unauthenticated attackers to extract email addresses for users with Directory Kit-specific user roles.
The Meta-box GalleryMeta plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with editor-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.
