Comparison Overview

Q: Between ExxonMobil company and YPF company, which one has the best AI Cybersecurity Score ?

ExxonMobil company demonstrates a stronger AI Cybersecurity Score compared to YPF company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between ExxonMobil company and YPF company, which one has experienced more cyber incidents in the past ?

ExxonMobil company has historically faced a number of disclosed cyber incidents, whereas YPF company has not reported any.

Q: Between ExxonMobil company and YPF company, which one has experienced more cyber incidents this year ?

In the current year, YPF company and ExxonMobil company have not reported any cyber incidents.

Q: Between ExxonMobil company and YPF company, which one has experienced at least one ransomware attack ?

Neither YPF company nor ExxonMobil company has reported experiencing a ransomware attack publicly.

Q: Between ExxonMobil company and YPF company, which one has experienced at least one data breach ?

ExxonMobil company has disclosed at least one data breach, while the other YPF company has not reported such incidents publicly.

Q: Between ExxonMobil company and YPF company, which one has experienced at least one targeted cyberattack ?

Neither YPF company nor ExxonMobil company has reported experiencing targeted cyberattacks publicly.

Q: Between ExxonMobil company and YPF company, which one has experienced at least one vulnerability ?

Neither ExxonMobil company nor YPF company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between ExxonMobil company and YPF company, which one holds the most compliance certifications ?

Neither ExxonMobil nor YPF holds any compliance certifications.

Q: Between ExxonMobil company and YPF company, which one has the most subsidiaries ?

ExxonMobil company has more subsidiaries worldwide compared to YPF company.

ExxonMobil

undefined, undefined, undefined, undefined, US

Last Update: 2025-12-10

View Profile

Between 800 and 849

http://www.exxonmobil.com

The need for energy is universal. That's why ExxonMobil scientists and engineers are pioneering new research and pursuing new technologies to reduce emissions while creating more efficient fuels. We're committed to responsibly meeting the world's energy needs. We aim to achieve #netzero emissions from our operated assets by 2050 (for Scope 1 and 2 greenhouse gas emissions) and are taking a comprehensive approach to create emission-reduction roadmaps for major operated assets. Find us also on: YouTube.com/ExxonMobil Find our latest Privacy Policy at https://corporate.exxonmobil.com/Global-legal-pages/privacy-policy See our terms and conditions at https://corporate.exxonmobil.com/global-legal-pages/terms-and-conditions Find resources on our GHG emission reduction efforts here: https://corporate.exxonmobil.com/resources

NAICS: 211

NAICS Definition: Oil and Gas Extraction

Employees: 61,842

Subsidiaries: 37

12-month incidents

0

Known data breaches

1

Attack type number

1

View Profile

YPF

Macacha Guemes 515, Capital Federal, Buenos Aires, ., AR

Last Update: 2025-12-13

Between 750 and 799

http://www.ypf.com

En YPF, tenemos un Plan 4x4 para convertirnos en una compañía de clase mundial y lograr transformarnos en grandes exportadores de hidrocarburos. Nuestros cuatro pilares son: la aceleración de la producción de petróleo en Vaca Muerta, el activo más importante que tiene nuestro país; la disciplina financiera en la gestión de inversiones; la búsqueda de las eficiencias operativas en los negocios, y la concreción del proyecto de GNL en Argentina. Invertimos en grandes proyectos de producción y exploración, transformación energética, industrialización y en el desarrollo de ductos para transportar la producción. Trabajamos por los combustibles del futuro y de calidad internacional. Buscamos constantemente innovación y nuevas tecnologías. Ponemos mucho esfuerzo para multiplicar nuestro potencial energético y seguir desarrollando la industria. Energía a la altura de tu energía. #YPFENERGÍAARGENTINA.

NAICS: 211

NAICS Definition:

Employees: 27,131

Subsidiaries: 1

12-month incidents

0

Known data breaches

0

Attack type number

0

ExxonMobil

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

https://images.rankiteo.com/companyimages/ypf-s-a-.jpeg

YPF

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Oil and Gas Industry Average (This Year)

No incidents recorded for ExxonMobil in 2025.

Incidents vs Oil and Gas Industry Average (This Year)

No incidents recorded for YPF in 2025.

Incident History — ExxonMobil (X = Date, Y = Severity)

ExxonMobil cyber incidents detection timeline including parent company and subsidiaries

Incident History — YPF (X = Date, Y = Severity)

YPF cyber incidents detection timeline including parent company and subsidiaries

ExxonMobil

Incidents

Date Detected: 12/2024

Type:Breach

Motivation: To protect corporate interests amid environmental scrutiny

Blog: Blog

YPF

Incidents

No Incident

ExxonMobil company demonstrates a stronger AI Cybersecurity Score compared to YPF company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

ExxonMobil company has historically faced a number of disclosed cyber incidents, whereas YPF company has not reported any.

In the current year, YPF company and ExxonMobil company have not reported any cyber incidents.

Neither YPF company nor ExxonMobil company has reported experiencing a ransomware attack publicly.

ExxonMobil company has disclosed at least one data breach, while the other YPF company has not reported such incidents publicly.

Neither YPF company nor ExxonMobil company has reported experiencing targeted cyberattacks publicly.

Neither ExxonMobil company nor YPF company has reported experiencing or disclosing vulnerabilities publicly.

Neither ExxonMobil nor YPF holds any compliance certifications.

Neither company holds any compliance certifications.

ExxonMobil company has more subsidiaries worldwide compared to YPF company.

ExxonMobil company employs more people globally than YPF company, reflecting its scale as a Oil and Gas.

Neither ExxonMobil nor YPF holds SOC 2 Type 1 certification.

Neither ExxonMobil nor YPF holds SOC 2 Type 2 certification.

Neither ExxonMobil nor YPF holds ISO 27001 certification.

Neither ExxonMobil nor YPF holds PCI DSS certification.

Neither ExxonMobil nor YPF holds HIPAA certification.

Neither ExxonMobil nor YPF holds GDPR certification.

Description

Hitachi Vantara Pentaho Data Integration and Analytics Community Dashboard Framework prior to versions 10.2.0.4, including 9.3.0.x and 8.3.x display the full server stack trace when encountering an error within the GetCdfResource servlet.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss3

Base: 5.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

References

https://support.pentaho.com/hc/en-us/articles/41833799577741--Resolved-Hitachi-Vantara-Pentaho-Business-Analytics-Server-Generation-of-Error-Message-Containing-Sensitive-Information-Versions-before-10-2-0-4-Impacted-CVE-2025-9122

Description

Pentaho Data Integration and Analytics Community Dashboard Editor plugin versions before 10.2.0.4, including 9.3.0.x and 8.3.x, deserialize untrusted JSON data without constraining the parser to approved classes and methods.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss3

Base: 8.8

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

https://support.pentaho.com/hc/en-us/articles/41832536185613--Resolved-Hitachi-Vantara-Pentaho-Business-Analytics-Server-Deserialization-of-Untrusted-Data-Versions-before-10-2-0-4-Impacted-CVE-2025-9121

Description

A security flaw has been discovered in CTCMS Content Management System up to 2.1.2. The impacted element is an unknown function in the library /ctcms/libs/Ct_Config.php of the component Backend System Configuration Module. The manipulation of the argument Cj_Add/Cj_Edit results in code injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss2

Base: 5.8

Severity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base: 4.7

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 5.1

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

A vulnerability was identified in CTCMS Content Management System up to 2.1.2. The affected element is the function Save of the file /ctcms/libs/Ct_App.php of the component Backend App Configuration Module. The manipulation of the argument CT_App_Paytype leads to code injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss2

Base: 5.8

Severity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base: 4.7

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 5.1

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Weblate is a web based localization tool. In versions prior to 5.15, it was possible to accept an invitation opened by a different user. Version 5.15. contains a patch. As a workaround, avoid leaving one's Weblate sessions with an invitation opened unattended.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss4

Base: 1.0

Severity: HIGH

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

ExxonMobil

VS

YPF

ExxonMobil

YPF

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Oil and Gas Industry Average (This Year)

Incidents vs Oil and Gas Industry Average (This Year)

Incident History — ExxonMobil (X = Date, Y = Severity)

Incident History — YPF (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-9122

Risk Information

CVE-2025-9121

Risk Information

CVE-2025-14730

Risk Information

CVE-2025-14729

Risk Information

CVE-2025-64725

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

ExxonMobil

VS

YPF

ExxonMobil

YPF

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Oil and Gas Industry Average (This Year)

Incidents vs Oil and Gas Industry Average (This Year)

Incident History — ExxonMobil (X = Date, Y = Severity)

Incident History — YPF (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Breach EXX000120924

No Incident

FAQ

Between ExxonMobil company and YPF company, which one has the best AI Cybersecurity Score ?

Between ExxonMobil company and YPF company, which one has experienced more cyber incidents in the past ?

Between ExxonMobil company and YPF company, which one has experienced more cyber incidents this year ?

Between ExxonMobil company and YPF company, which one has experienced at least one ransomware attack ?

Between ExxonMobil company and YPF company, which one has experienced at least one data breach ?

Between ExxonMobil company and YPF company, which one has experienced at least one targeted cyberattack ?

Between ExxonMobil company and YPF company, which one has experienced at least one vulnerability ?

Between ExxonMobil company and YPF company, which one holds the most compliance certifications ?

Between ExxonMobil company and YPF company, which one holds the fewest compliance certifications ?

Between ExxonMobil company and YPF company, which one has the most subsidiaries ?

Between ExxonMobil company and YPF company, which one has the largest number of employees ?

Between ExxonMobil and YPF, which company holds both SOC 2 Type 1 certifications ?

Between ExxonMobil and YPF, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — ExxonMobil or YPF ?

Which company is PCI DSS compliant — ExxonMobil or YPF ?

Between ExxonMobil and YPF, which company complies with HIPAA regulations for healthcare data ?

Between ExxonMobil and YPF, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-9122

Risk Information

CVE-2025-9121

Risk Information

CVE-2025-14730

Risk Information

CVE-2025-14729

Risk Information

CVE-2025-64725

Risk Information