CNRL
Company Details
Linkedin ID:
cnrl
Website:
Employees number:
9,359
Number of followers:
222,462
NAICS:
211
Industry Type:
Homepage:
cnrl.com
IP Addresses:
0
Company ID:
CAN_1384489
Scan Status:
In-progress
Canadian Natural Resources Limited (CNRL) Company CyberSecurity Posture
cnrl.com
MAKE YOUR MARK WHILE YOU GROW YOUR CAREER At Canadian Natural we believe our employees are the key to unlocking asset potential. As one of the largest independent crude oil and natural gas producers in the world, our balanced mix of natural gas, light oil, heavy oil, in situ oil sands production and oil sands mining creates opportunity for people who want to be part of a challenging and competitive industry. Join our team as we continue to create value through innovation by “doing it right” with fun and integrity in North America, the North Sea, and Offshore Africa. Health and Safety At Canadian Natural, safety is a core value. We conduct all of our operations in a way that identifies, minimizes and mitigates harm to the health and safety of employees, contractors, the public and the environment. Want to learn more? Visit http://www.cnrl-careers.com/candidateinfo to learn about: • Compensation and Benefits • Environmental Initiatives • Operations • Company Culture • Relocation Assistance and more! To learn more or to view our exciting career opportunities, visit: www.cnrl-careers.com
Canadian Natural Resources Limited (CNRL) A.I CyberSecurity Scoring
CNRL Risk Score (AI oriented)Between 800 and 849
CNRL
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
CNRL Global Score (TPRM)XXXX
CNRL
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
CNRL Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
CNRL Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for CNRL
Incidents vs Oil and Gas Industry Average (This Year)
No incidents recorded for Canadian Natural Resources Limited (CNRL) in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Canadian Natural Resources Limited (CNRL) in 2025.
Incident Types CNRL vs Oil and Gas Industry Avg (This Year)
No incidents recorded for Canadian Natural Resources Limited (CNRL) in 2025.
Incident History — CNRL (X = Date, Y = Severity)
CNRL cyber incidents detection timeline including parent company and subsidiaries
CNRL Company Subsidiaries
MAKE YOUR MARK WHILE YOU GROW YOUR CAREER At Canadian Natural we believe our employees are the key to unlocking asset potential. As one of the largest independent crude oil and natural gas producers in the world, our balanced mix of natural gas, light oil, heavy oil, in situ oil sands production and oil sands mining creates opportunity for people who want to be part of a challenging and competitive industry. Join our team as we continue to create value through innovation by “doing it right” with fun and integrity in North America, the North Sea, and Offshore Africa. Health and Safety At Canadian Natural, safety is a core value. We conduct all of our operations in a way that identifies, minimizes and mitigates harm to the health and safety of employees, contractors, the public and the environment. Want to learn more? Visit http://www.cnrl-careers.com/candidateinfo to learn about: • Compensation and Benefits • Environmental Initiatives • Operations • Company Culture • Relocation Assistance and more! To learn more or to view our exciting career opportunities, visit: www.cnrl-careers.com
Loading...
CNRL Similar Companies
Petróleos Mexicanos es la mayor empresa de México, el mayor contribuyente fiscal del país, así como una de las empresas más grandes de América Latina. Es de las pocas empresas petroleras del mundo que desarrolla toda la cadena productiva de la industria, desde la exploración, hasta la distribució
PETROVIETNAM
Petrovietnam’s business - Core business: + Exploration, Production, Refinery, Petrochemicals, Storage, Transportation and Service in Petroleum Field; + Importing and Exporting petroleum materials, equipment and productions; + Distributing oil and gas products and hydrocarbon materi
ExxonMobil
The need for energy is universal. That's why ExxonMobil scientists and engineers are pioneering new research and pursuing new technologies to reduce emissions while creating more efficient fuels. We're committed to responsibly meeting the world's energy needs. We aim to achieve #netzero emissions
Shell is a global group of energy and petrochemical companies, employing 103,000 people and with operations in more than 70 countries. We serve more than 1 million commercial and industrial customers, and around 33 million customers daily at more than 47,000 Shell-branded retail service stations. O
Aker Solutions delivers integrated solutions, products and services to the global energy industry. We enable low-carbon oil and gas production and develop renewable solutions to meet future energy needs. By combining innovative digital solutions and predictable project execution we accelerate the tr
Valero
Valero is an international manufacturer and marketer of transportation fuels and petrochemical products. We are a Fortune 500 company based in San Antonio, Texas, fueled by nearly 10,000 employees and 15 petroleum refineries with a combined throughput capacity of approximately 3.2 million barrels pe
TechnipFMC
TechnipFMC is a leading technology provider to the traditional and new energies industry, delivering fully integrated projects, products, and services. With our proprietary technologies and comprehensive solutions, we are transforming our clients’ project economics, helping them unlock new possibi
At Enbridge, our goal is to be the first-choice energy delivery company in North America and beyond—for customers, communities, investors, regulators and policymakers, and employees. We also recognize the importance of a secure, reliable and affordable supply of energy, which we deliver every day th
Koch Engineered Solutions
Koch Engineered Solutions (KES) provides uniquely engineered solutions in construction; mass and heat transfer; combustion and emissions controls; filtration; separation; materials applications; automation and actuation. KES is located in Wichita, Kansas, and is a subsidiary of Koch Industries, one
.png)
CNRL CyberSecurity News
November 06, 2025 08:00 AM
Canadian Natural Resources Limited Announces Quarterly Dividend
Calgary, Alberta--(Newsfile Corp. - November 6, 2025) - Canadian Natural Resources Limited (TSX: CNQ) (NYSE: CNQ) announces that its Board...
November 06, 2025 08:00 AM
Canadian Natural Resources (TSX: CNQ) declares C$0.5875 dividend, 25th straight increase
Canadian Natural Resources (TSX: CNQ, NYSE: CNQ) declared a quarterly cash dividend of C$0.5875 per common share.
July 10, 2025 12:21 PM
Canada’s Best Companies of 2025
Canadian brands like lululemon and Aritzia have become increasingly commonplace to U.S. and global consumers. To assess which companies are helping Canada...
May 28, 2025 07:00 AM
LNG exporter Cheniere enters natural gas deal with Canadian Natural Resources
U.S. LNG exporter Cheniere Energy said on Wednesday its unit has entered into a long-term agreement to purchase natural gas from Canadian...
May 08, 2025 07:00 AM
Canadian Natural Resources Limited Announces Quarterly Dividend
Canadian Natural Resources Limited (CNQ) has declared a quarterly cash dividend of C$0.5875 per common share, payable on July 3, 2025,...
April 15, 2025 07:00 AM
Canadian Natural Resources Gives Shareholders More Power Over Executive Compensation
Canadian Natural Resources (TSX: CNQ) (NYSE: CNQ) has announced an amendment to its Amended, Compiled and Restated Stock Option Plan.
March 10, 2025 07:00 AM
Canadian Natural Resources Announces 10% Share Buyback Program Worth 178.7M Shares
Canadian Natural Resources reveals ambitious shareholder return strategy with new buyback program for 178.7M shares, plus structured cash...
March 06, 2025 08:00 AM
Canada should diversify oil export markets, country's top oil producer says
Canada must look at ways to diversify its oil export markets, both in the short term as well as by exploring a long-term solution like a new...
February 18, 2025 08:00 AM
Better Energy Stock: Suncor vs Canadian Natural Resources?
Suncor outperformed CNRL over the past year. Will that trend continue in 2025?
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
CNRL CyberSecurity History Information
Official Website of Canadian Natural Resources Limited (CNRL)
The official website of Canadian Natural Resources Limited (CNRL) is http://www.cnrl.com.
Canadian Natural Resources Limited (CNRL)’s AI-Generated Cybersecurity Score
According to Rankiteo, Canadian Natural Resources Limited (CNRL)’s AI-generated cybersecurity score is 810, reflecting their Good security posture.
How many security badges does Canadian Natural Resources Limited (CNRL)’ have ?
According to Rankiteo, Canadian Natural Resources Limited (CNRL) currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Canadian Natural Resources Limited (CNRL) have SOC 2 Type 1 certification ?
According to Rankiteo, Canadian Natural Resources Limited (CNRL) is not certified under SOC 2 Type 1.
Does Canadian Natural Resources Limited (CNRL) have SOC 2 Type 2 certification ?
According to Rankiteo, Canadian Natural Resources Limited (CNRL) does not hold a SOC 2 Type 2 certification.
Does Canadian Natural Resources Limited (CNRL) comply with GDPR ?
According to Rankiteo, Canadian Natural Resources Limited (CNRL) is not listed as GDPR compliant.
Does Canadian Natural Resources Limited (CNRL) have PCI DSS certification ?
According to Rankiteo, Canadian Natural Resources Limited (CNRL) does not currently maintain PCI DSS compliance.
Does Canadian Natural Resources Limited (CNRL) comply with HIPAA ?
According to Rankiteo, Canadian Natural Resources Limited (CNRL) is not compliant with HIPAA regulations.
Does Canadian Natural Resources Limited (CNRL) have ISO 27001 certification ?
According to Rankiteo,Canadian Natural Resources Limited (CNRL) is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Canadian Natural Resources Limited (CNRL)
Canadian Natural Resources Limited (CNRL) operates primarily in the Oil and Gas industry.
Number of Employees at Canadian Natural Resources Limited (CNRL)
Canadian Natural Resources Limited (CNRL) employs approximately 9,359 people worldwide.
Subsidiaries Owned by Canadian Natural Resources Limited (CNRL)
Canadian Natural Resources Limited (CNRL) presently has no subsidiaries across any sectors.
Canadian Natural Resources Limited (CNRL)’s LinkedIn Followers
Canadian Natural Resources Limited (CNRL)’s official LinkedIn profile has approximately 222,462 followers.
NAICS Classification of Canadian Natural Resources Limited (CNRL)
Canadian Natural Resources Limited (CNRL) is classified under the NAICS code 211, which corresponds to Oil and Gas Extraction.
Canadian Natural Resources Limited (CNRL)’s Presence on Crunchbase
Yes, Canadian Natural Resources Limited (CNRL) has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/canadian-natural-resources-limited.
Canadian Natural Resources Limited (CNRL)’s Presence on LinkedIn
Yes, Canadian Natural Resources Limited (CNRL) maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/cnrl.
Cybersecurity Incidents Involving Canadian Natural Resources Limited (CNRL)
As of November 27, 2025, Rankiteo reports that Canadian Natural Resources Limited (CNRL) has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Canadian Natural Resources Limited (CNRL) has an estimated 10,412 peer or competitor companies worldwide.
Canadian Natural Resources Limited (CNRL) CyberSecurity History Information
How many cyber incidents has Canadian Natural Resources Limited (CNRL) faced ?
Total Incidents: According to Rankiteo, Canadian Natural Resources Limited (CNRL) has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Canadian Natural Resources Limited (CNRL) ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=cnrl' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
