Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
du

du Vendor Cyber Rating & Cyber Score

du.ae
cbin
Add Your Compliance Badge
ISO 27001
SOC 2 Type 1
SOC 2 Type 2
PCI DSS
HIPAA
GDPR

Add life to life. Welcome to a vibrant and multiple award-winning telecommunications service provider. Our aim is to bring people and businesses together in what we do best, by offering mobile and fixed services, broadband connectivity and IPTV services to people, homes and businesses all over the UAE. du serves nine million individual customers with its mobile, fixed line, broadband internet, and Home services over its 4G LTE network. du also caters to over 100,000 UAE businesses with its vast range of ICT and managed services. Since its launch in 2007, du has many UAE firsts to its credit, including introduction of Pay by the Second® billing system, IPTV and self-service portal. du is ideally placed to support the realisation of UAE


du A.I CyberSecurity Scoring

Incident Details
du
Company Information
Website:http://www.du.ae
Employees number:7,059
Number of followers:433,593
NAICS:517
Industry Type:Telecommunications
Homepage:du.ae
Cyber Premium EstimationGet Supply Chain
du Risk Score (AI oriented)
Between 650 and 699
logo
duTelecommunications
Updated:
02/04/2026
692/1000
Weak
B
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
du Global Score (TPRM)
xxxx
logo
duTelecommunications
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

du
duWeak
Current Score
692B (WEAK)
01000
2 incidents
-100 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JUNE 2026
701Before Incident
MAY 2026
696Before Incident
APRIL 2026
696Before Incident
MARCH 2026
695Before Incident
FEBRUARY 2026
693Before Incident
JANUARY 2026
687Before Incident
DECEMBER 2025
683Before Incident
NOVEMBER 2025
782Before Incident
Ransomware
21 Nov 2025du
Emirates Integrated Telecommunications Company P.J.S.C. (du.ae)

Ransomware Attack on Emirates Integrated Telecommunications Company (du.ae) by DragonForce

682After Incident
CRITICAL-100
DU1182011112325
On November 21, 2025, the ransomware group DragonForce launched a targeted cyberattack against Emirates Integrated Telecommunications Company (du.ae), a major telecom operator in the UAE. The group publicly claimed responsibility and threatened to leak sensitive company data unless ransom negotiations were initiated. The attack posed a severe risk of exfiltrated corporate and customer data, potentially including financial records, proprietary telecom infrastructure details, and personally identifiable information (PII). Given du.ae’s critical role in the UAE’s digital infrastructure, the breach could disrupt national communication services, erode customer trust, and trigger regulatory penalties for data protection failures. The incident also highlighted vulnerabilities in third-party supply chains and employee credential security, as attackers likely exploited phishing or dark web-sourced credentials. While the full scope of the leak remains undisclosed, the threat of public data exposure and operational downtime places the company at risk of reputational damage, financial losses, and potential legal repercussions if customer or employee data is compromised.
INCIDENT DETAILS -
TYPE
ransomware
MOTIVATION
financial (ransom demand)
IMPACT
Brand Reputation Impact: high (potential data leak threat)
DATA BREACH
Data Exfiltration: threatened (not yet confirmed)
REFERENCES
Blog URLSource URL
OCTOBER 2025
694Before Incident
SEPTEMBER 2025
692Before Incident
AUGUST 2025
690Before Incident
JULY 2025
688Before Incident
JUNE 2021
785Before Incident
Cyber Attack
16 Jun 2021du
Telecommunications service provider in the Middle East

Exploitation of ToolShell Vulnerability (CVE-2025-53770) in Microsoft SharePoint by Chinese Threat Actors

769After Incident
CRITICAL-16
DU3432434102225
A telecommunications service provider in the Middle East fell victim to a sophisticated cyber attack exploiting the ToolShell vulnerability (CVE-2025-53770) in Microsoft SharePoint. The attack, attributed to Chinese state-sponsored threat actors (including Salt Typhoon), began on July 21 with the deployment of webshells for persistent access. The attackers then used DLL side-loading to install the Zingdoor backdoor (Go-based), followed by the ShadowPad Trojan, KrustyLoader, and the Sliver post-exploitation framework.Credential theft was conducted via ProcDump, Minidump, and LsassDumper, while PetitPotam (CVE-2021-36942) was exploited for domain compromise. The attack leveraged living-off-the-land tools (e.g., Certutil, GoGo Scanner, Revsocks) for data exfiltration, lateral movement, and persistence. The breach likely resulted in unauthorized access to sensitive corporate and customer data, operational disruption, and potential espionage risks given the target’s role in regional communications infrastructure. The use of legitimate security vendor executables (Trend Micro, BitDefender) to evade detection highlights the attack’s advanced evasion techniques.
INCIDENT DETAILS -
TYPE
Cyber EspionageUnauthorized AccessData ExfiltrationCredential Theft
MOTIVATION
EspionageData TheftPersistent Access
IMPACT
Microsoft SharePoint Servers (On-Premise)Domain Controllers (via PetitPotam)Compromised EndpointsPersistent Access via WebshellsCredential TheftLateral MovementPost-Exploitation (Sliver Framework)Potential Reputation Damage for Affected OrganizationsTrust Erosion in Government/Telecom SectorsHigh (Credential Dumping via ProcDump, Minidump, LsassDumper)
DATA BREACH
System InformationCredentials (via Lsass Dumping)Potential Sensitive FilesHigh (Government/Telecom/Finance Sectors)Likely (via Revsocks Utility)Potential (via Credential Theft)
REFERENCES
Blog URLSource URL

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for du ?
?
What was du's A.I Rankiteo Cyber Score in May 2026 ?
?
What was du's A.I Rankiteo Cyber Score in April 2026 ?
?
What was du's A.I Rankiteo Cyber Score in March 2026 ?
?
What was du's A.I Rankiteo Cyber Score in February 2026 ?
?
What was du's A.I Rankiteo Cyber Score in January 2026 ?
?
What was du's A.I Rankiteo Cyber Score in December 2025 ?
?
What was du's A.I Rankiteo Cyber Score in November 2025 ?
?
What was du's A.I Rankiteo Cyber Score in October 2025 ?
?
What was du's A.I Rankiteo Cyber Score in September 2025 ?
?
What was du's A.I Rankiteo Cyber Score in August 2025 ?
?
What was du's A.I Rankiteo Cyber Score in July 2025 ?
?
What is the average per-incident point impact on du's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with du ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view du's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?