Comparison Overview

Essar

VS

Sabanci Holding

Essar

Essar House, 11, Keshavrao Khadye Marg, Mahalaxmi, Mumbai, 400 034, IN
Last Update: 2026-01-18
View Profile
Between 750 and 799
http://www.essar.com

Essar, with an entrepreneurial track record spanning 50+ years, specialises in investing and developing assets to create value in core sectors such as Energy, Infrastructure, Metals & Mining, and Technology & Retail. With a presence in eight countries, Essar generates revenues of US$15 billion and provides employment for over 7,000 people. Over the past five years, Essar has strategically rebalanced its portfolio by monetising some world-class assets. Essar is now positioned to transition its existing assets to a greener regime and invest in businesses driving the transformation of sector landscapes from carbon-centric to a clean energy ecosystem, both nationally and globally. The Group is developing sustainable assets and industry ecosystems, with a particular focus on hydrogen, green mobility, and green steel. Essar Foundation, the CSR arm of Essar, has a rich 50-year heritage of service across India, focusing on areas such as health, education, livelihood, women empowerment, sports, environment, and infrastructure.

NAICS: 5239
NAICS Definition: Other Financial Investment Activities
Employees: 10,565
Subsidiaries: 3
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Sabanci Holding

Sabancı Center 4.Levent İstanbul, 34330, TR
Last Update: 2026-01-17
Between 750 and 799
http://www.sabanci.com

Sabancı Holding is one of Turkey’s leading conglomerate, engaged in a wide variety of business activities through its subsidiaries and affiliates, mainly in the banking, financial services, energy, industrials, building materials and retail sectors. Our Group companies most of which are leaders in their respective sectors. As Sabancı Group, we position ourselves in new economy, with global partnerships, employment for 60 thousand, and reaching more than 40 million people on 5 continents. We invest in energy & climate, material and digital technologies, through an agile global footprint to design a sustainable future with a goal of achieving 'Net Zero' by 2050. We stride confidently towards the future through Sabancı of New Generation culture and our purpose driven, stakeholder oriented, agile and diverse organization. We are committed to ensuring equal rights and opportunities to foster a positive and an inclusive work environment and to contribute to the socio economic development of the community. With tens of thousands of talents, stakeholders and investments in multiple businesses worldwide, what connects us is our purpose: We unite Turkey and the World for a sustainable life with leading enterprises.

NAICS: 5239
NAICS Definition: Other Financial Investment Activities
Employees: 10,001
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/essar.jpeg
Essar
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/sabanci-holding.jpeg
Sabanci Holding
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Essar
100%
Compliance Rate
0/4 Standards Verified
Sabanci Holding
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Investment Management Industry Average (This Year)

No incidents recorded for Essar in 2026.

Incidents vs Investment Management Industry Average (This Year)

No incidents recorded for Sabanci Holding in 2026.

Incident History — Essar (X = Date, Y = Severity)

Essar cyber incidents detection timeline including parent company and subsidiaries

Incident History — Sabanci Holding (X = Date, Y = Severity)

Sabanci Holding cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/essar.jpeg
Essar
Incidents

No Incident

https://images.rankiteo.com/companyimages/sabanci-holding.jpeg
Sabanci Holding
Incidents

No Incident

FAQ

Essar company demonstrates a stronger AI Cybersecurity Score compared to Sabanci Holding company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Sabanci Holding company has disclosed a higher number of cyber incidents compared to Essar company.

In the current year, Sabanci Holding company and Essar company have not reported any cyber incidents.

Neither Sabanci Holding company nor Essar company has reported experiencing a ransomware attack publicly.

Neither Sabanci Holding company nor Essar company has reported experiencing a data breach publicly.

Neither Sabanci Holding company nor Essar company has reported experiencing targeted cyberattacks publicly.

Neither Essar company nor Sabanci Holding company has reported experiencing or disclosing vulnerabilities publicly.

Neither Essar nor Sabanci Holding holds any compliance certifications.

Neither company holds any compliance certifications.

Essar company has more subsidiaries worldwide compared to Sabanci Holding company.

Essar company employs more people globally than Sabanci Holding company, reflecting its scale as a Investment Management.

Neither Essar nor Sabanci Holding holds SOC 2 Type 1 certification.

Neither Essar nor Sabanci Holding holds SOC 2 Type 2 certification.

Neither Essar nor Sabanci Holding holds ISO 27001 certification.

Neither Essar nor Sabanci Holding holds PCI DSS certification.

Neither Essar nor Sabanci Holding holds HIPAA certification.

Neither Essar nor Sabanci Holding holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Improper validation of specified type of input in M365 Copilot allows an unauthorized attacker to disclose information over a network.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
References
Description

Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privileges over a network.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References
Description

Azure Entra ID Elevation of Privilege Vulnerability

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
References
Description

Moonraker is a Python web server providing API access to Klipper 3D printing firmware. In versions 0.9.3 and below, instances configured with the "ldap" component enabled are vulnerable to LDAP search filter injection techniques via the login endpoint. The 401 error response message can be used to determine whether or not a search was successful, allowing for brute force methods to discover LDAP entries on the server such as user IDs and user attributes. This issue has been fixed in version 0.10.0.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss4
Base: 2.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Runtipi is a Docker-based, personal homeserver orchestrator that facilitates multiple services on a single server. Versions 3.7.0 and above allow an authenticated user to execute arbitrary system commands on the host server by injecting shell metacharacters into backup filenames. The BackupManager fails to sanitize the filenames of uploaded backups. The system persists user-uploaded files directly to the host filesystem using the raw originalname provided in the request. This allows an attacker to stage a file containing shell metacharacters (e.g., $(id).tar.gz) at a predictable path, which is later referenced during the restore process. The successful storage of the file is what allows the subsequent restore command to reference and execute it. This issue has been fixed in version 4.7.0.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 8.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
References