Comparison Overview

Q: Between bp company and aramco company, which one has the best AI Cybersecurity Score ?

aramco company demonstrates a stronger AI Cybersecurity Score compared to bp company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between bp company and aramco company, which one has experienced more cyber incidents in the past ?

aramco company has historically faced a number of disclosed cyber incidents, whereas bp company has not reported any.

Q: Between bp company and aramco company, which one has experienced more cyber incidents this year ?

In the current year, aramco company and bp company have not reported any cyber incidents.

Q: Between bp company and aramco company, which one has experienced at least one ransomware attack ?

Neither aramco company nor bp company has reported experiencing a ransomware attack publicly.

Q: Between bp company and aramco company, which one has experienced at least one data breach ?

Neither aramco company nor bp company has reported experiencing a data breach publicly.

Q: Between bp company and aramco company, which one has experienced at least one targeted cyberattack ?

aramco company has reported targeted cyberattacks, while bp company has not reported such incidents publicly.

Q: Between bp company and aramco company, which one has experienced at least one vulnerability ?

Neither bp company nor aramco company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between bp company and aramco company, which one holds the most compliance certifications ?

Neither bp nor aramco holds any compliance certifications.

Q: Between bp company and aramco company, which one has the most subsidiaries ?

bp company has more subsidiaries worldwide compared to aramco company.

bp

1 St James Square, London, England, SW1Y 4PD, GB

Last Update: 2025-12-09

View Profile

Between 800 and 849

http://www.bp.com

Check out our commenting guidelines 👉 bp.com/CommentsGuide

NAICS: 211

NAICS Definition: Oil and Gas Extraction

Employees: 72,241

Subsidiaries: 7

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

aramco

P.O. Box 5000, Dhahran, undefined, 31311, SA

Last Update: 2025-12-09

Between 800 and 849

https://www.aramco.com

We’re a leading producer of the energy and chemicals that drive global commerce and enhance the daily lives of people around the globe by continuing delivering an uninterrupted supply of energy to the world. Our resilience and agility has built one of the world’s largest integrated energy and chemicals companies. And we are part of the global effort toward building a low carbon economy. Our horizon has never been clearer.

NAICS: 211

NAICS Definition: Oil and Gas Extraction

Employees: 152,474

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

1

https://images.rankiteo.com/companyimages/bp.jpeg

bp

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

aramco

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Oil and Gas Industry Average (This Year)

No incidents recorded for bp in 2025.

Incidents vs Oil and Gas Industry Average (This Year)

No incidents recorded for aramco in 2025.

Incident History — bp (X = Date, Y = Severity)

bp cyber incidents detection timeline including parent company and subsidiaries

Incident History — aramco (X = Date, Y = Severity)

aramco cyber incidents detection timeline including parent company and subsidiaries

bp

Incidents

No Incident

aramco

Incidents

Date Detected: 8/2017

Type:Cyber Attack

Attack Vector: Malware

Motivation: Cyber warfare, industrial espionage

Blog: Blog

aramco company demonstrates a stronger AI Cybersecurity Score compared to bp company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

aramco company has historically faced a number of disclosed cyber incidents, whereas bp company has not reported any.

In the current year, aramco company and bp company have not reported any cyber incidents.

Neither aramco company nor bp company has reported experiencing a ransomware attack publicly.

Neither aramco company nor bp company has reported experiencing a data breach publicly.

aramco company has reported targeted cyberattacks, while bp company has not reported such incidents publicly.

Neither bp company nor aramco company has reported experiencing or disclosing vulnerabilities publicly.

Neither bp nor aramco holds any compliance certifications.

Neither company holds any compliance certifications.

bp company has more subsidiaries worldwide compared to aramco company.

aramco company employs more people globally than bp company, reflecting its scale as a Oil and Gas.

Neither bp nor aramco holds SOC 2 Type 1 certification.

Neither bp nor aramco holds SOC 2 Type 2 certification.

Neither bp nor aramco holds ISO 27001 certification.

Neither bp nor aramco holds PCI DSS certification.

Neither bp nor aramco holds HIPAA certification.

Neither bp nor aramco holds GDPR certification.

Description

A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This vulnerability affects unknown code of the file /pet1/addcnp.php. This manipulation of the argument cnpname causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.

Published

Date

2025-12-13

Updated

Date

2025-12-13

Risk Information

cvss2

Base: 7.5

Severity: LOW

AV:N/AC:L/Au:N/C:P/I:P/A:P

cvss3

Base: 7.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 6.9

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function image_check of the component httpd. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high complexity level is associated with this attack. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited.

Published

Date

2025-12-13

Updated

Date

2025-12-13

Risk Information

cvss2

Base: 2.6

Severity: HIGH

AV:N/AC:H/Au:N/C:N/I:P/A:N

cvss3

Base: 3.7

Severity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

cvss4

Base: 6.3

Severity: HIGH

CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/update_student.php. This manipulation of the argument stud_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.

Published

Date

2025-12-13

Updated

Date

2025-12-13

Risk Information

cvss2

Base: 7.5

Severity: LOW

AV:N/AC:L/Au:N/C:P/I:P/A:P

cvss3

Base: 7.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 6.9

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

A security flaw has been discovered in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/save_user.php. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published

Date

2025-12-13

Updated

Date

2025-12-13

Risk Information

cvss2

Base: 7.5

Severity: LOW

AV:N/AC:L/Au:N/C:P/I:P/A:P

cvss3

Base: 7.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 6.9

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument user_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published

Date

2025-12-13

Updated

Date

2025-12-13

Risk Information

cvss2

Base: 7.5

Severity: LOW

AV:N/AC:L/Au:N/C:P/I:P/A:P

cvss3

Base: 7.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 6.9

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

bp

VS

aramco

bp

aramco

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Oil and Gas Industry Average (This Year)

Incidents vs Oil and Gas Industry Average (This Year)

Incident History — bp (X = Date, Y = Severity)

Incident History — aramco (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-14637

Risk Information

CVE-2025-14636

Risk Information

CVE-2025-14623

Risk Information

CVE-2025-14622

Risk Information

CVE-2025-14621

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

bp

VS

aramco

bp

aramco

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Oil and Gas Industry Average (This Year)

Incidents vs Oil and Gas Industry Average (This Year)

Incident History — bp (X = Date, Y = Severity)

Incident History — aramco (X = Date, Y = Severity)

Notable Incidents

No Incident

🔒 Incident : Cyber Attack SAU507050724

FAQ

Between bp company and aramco company, which one has the best AI Cybersecurity Score ?

Between bp company and aramco company, which one has experienced more cyber incidents in the past ?

Between bp company and aramco company, which one has experienced more cyber incidents this year ?

Between bp company and aramco company, which one has experienced at least one ransomware attack ?

Between bp company and aramco company, which one has experienced at least one data breach ?

Between bp company and aramco company, which one has experienced at least one targeted cyberattack ?

Between bp company and aramco company, which one has experienced at least one vulnerability ?

Between bp company and aramco company, which one holds the most compliance certifications ?

Between bp company and aramco company, which one holds the fewest compliance certifications ?

Between bp company and aramco company, which one has the most subsidiaries ?

Between bp company and aramco company, which one has the largest number of employees ?

Between bp and aramco, which company holds both SOC 2 Type 1 certifications ?

Between bp and aramco, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — bp or aramco ?

Which company is PCI DSS compliant — bp or aramco ?

Between bp and aramco, which company complies with HIPAA regulations for healthcare data ?

Between bp and aramco, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-14637

Risk Information

CVE-2025-14636

Risk Information

CVE-2025-14623

Risk Information

CVE-2025-14622

Risk Information

CVE-2025-14621

Risk Information