MPC
Company Details
Linkedin ID:
marathon-petroleum-company
Employees number:
16,461
Number of followers:
361,338
NAICS:
211
Industry Type:
Homepage:
marathonpetroleum.com
IP Addresses:
41
Company ID:
MAR_2224870
Scan Status:
Completed
Marathon Petroleum Corporation Company CyberSecurity Posture
marathonpetroleum.com
Marathon Petroleum Corporation (MPC) is a leading, integrated, downstream and midstream energy company headquartered in Findlay, Ohio. The company operates the nation's largest refining system. MPC's marketing system includes branded locations across the United States, including Marathon brand retail outlets. MPC also owns the general partner and majority limited partner interest in MPLX LP, a midstream company that owns and operates gathering, processing, and fractionation assets, as well as crude oil and light product transportation and logistics infrastructure. More information is available at www.marathonpetroleum.com.
Marathon Petroleum Corporation A.I CyberSecurity Scoring
MPC Risk Score (AI oriented)Between 800 and 849
MPC
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
MPC Global Score (TPRM)XXXX
MPC
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
MPC Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
MPC Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for MPC
Incidents vs Oil and Gas Industry Average (This Year)
No incidents recorded for Marathon Petroleum Corporation in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Marathon Petroleum Corporation in 2026.
Incident Types MPC vs Oil and Gas Industry Avg (This Year)
No incidents recorded for Marathon Petroleum Corporation in 2026.
Incident History — MPC (X = Date, Y = Severity)
MPC cyber incidents detection timeline including parent company and subsidiaries
MPC Company Subsidiaries
Marathon Petroleum Corporation (MPC) is a leading, integrated, downstream and midstream energy company headquartered in Findlay, Ohio. The company operates the nation's largest refining system. MPC's marketing system includes branded locations across the United States, including Marathon brand retail outlets. MPC also owns the general partner and majority limited partner interest in MPLX LP, a midstream company that owns and operates gathering, processing, and fractionation assets, as well as crude oil and light product transportation and logistics infrastructure. More information is available at www.marathonpetroleum.com.
Loading...
MPC Similar Companies
NOV
NOV delivers technology-driven solutions to empower the global energy industry. For more than 150 years, NOV has pioneered innovations that enable its customers to safely produce abundant energy while minimizing environmental impact. The energy industry depends on NOV’s deep expertise and technology
PETROVIETNAM
Petrovietnam’s business - Core business: + Exploration, Production, Refinery, Petrochemicals, Storage, Transportation and Service in Petroleum Field; + Importing and Exporting petroleum materials, equipment and productions; + Distributing oil and gas products and hydrocarbon materi
TechnipFMC
TechnipFMC is a leading technology provider to the traditional and new energies industry, delivering fully integrated projects, products, and services. With our proprietary technologies and comprehensive solutions, we are transforming our clients’ project economics, helping them unlock new possibi
Valero
Valero is an international manufacturer and marketer of transportation fuels and petrochemical products. We are a Fortune 500 company based in San Antonio, Texas, fueled by nearly 10,000 employees and 15 petroleum refineries with a combined throughput capacity of approximately 3.2 million barrels pe
We are a global oil and gas company tasked with an important job—to safely find and deliver energy for the world. We’re experts in what we do—from the well site to the office. Across our operations and activities in 13 countries, we never forget our responsibility to be a great neighbor, and a gre
McDermott International, Ltd
McDermott is a premier provider of engineering and construction solutions to the energy industry. Our customers trust our technology-driven approach—engineered to responsibly harness and transform global energy resources into the products the world needs for now and what’s next. From concept to co
Koch Engineered Solutions
Koch Engineered Solutions (KES) provides uniquely engineered solutions in construction; mass and heat transfer; combustion and emissions controls; filtration; separation; materials applications; automation and actuation. KES is located in Wichita, Kansas, and is a subsidiary of Koch Industries, one
ExxonMobil
The need for energy is universal. That's why ExxonMobil scientists and engineers are pioneering new research and pursuing new technologies to reduce emissions while creating more efficient fuels. We're committed to responsibly meeting the world's energy needs. We aim to achieve #netzero emissions
Tenaris
Tenaris is a leading supplier of tubes and related services for the world’s energy industry and certain other industrial applications. Our mission is to deliver value to our customers through product development, manufacturing excellence, and supply chain management. Tenaris employees around the wor
.png)
MPC CyberSecurity News
January 21, 2026 02:00 PM
Marathon Petroleum Corporation (MPC) Is a Trending Stock: Facts to Know Before Betting on It
Recently, Zacks.com users have been paying close attention to Marathon Petroleum (MPC). This makes it worthwhile to examine what the stock...
January 08, 2026 08:00 AM
Investors Heavily Search Marathon Petroleum Corporation (MPC): Here is What You Need to Know
Marathon Petroleum (MPC) has received quite a bit of attention from Zacks.com users lately. Therefore, it is wise to be aware of the facts...
January 05, 2026 08:00 AM
Should You Be Impressed By Marathon Petroleum Corporation's (NYSE:MPC) ROE?
One of the best investments we can make is in our own knowledge and skill set. With that in mind, this article will...
January 01, 2026 08:00 AM
Marathon Petroleum Corporation (NYSE:MPC) is largely controlled by institutional shareholders who own 75% of the company
Institutions' substantial holdings in Marathon Petroleum implies that they have significant influence over the company's share price.
December 30, 2025 08:00 AM
Why Analysts Are Divided on Marathon Petroleum Corporation (MPC)
Marathon Petroleum Corporation (NYSE:MPC) is among the ridiculously cheap stocks to buy now. As of December 26, Marathon Petroleum...
December 22, 2025 08:00 AM
Here is What to Know Beyond Why Marathon Petroleum Corporation (MPC) is a Trending Stock
Marathon Petroleum (MPC) has received quite a bit of attention from Zacks.com users lately. Therefore, it is wise to be aware of the facts...
December 09, 2025 08:00 AM
Is Trending Stock Marathon Petroleum Corporation (MPC) a Buy Now?
Recently, Zacks.com users have been paying close attention to Marathon Petroleum (MPC). This makes it worthwhile to examine what the stock...
December 02, 2025 08:00 AM
Marathon Petroleum Corporation's (NYSE:MPC) large institutional owners must be happy as stock continues to impress, up 3.2% over the past week
Institutions' substantial holdings in Marathon Petroleum implies that they have significant influence over the company's share price.
November 26, 2025 08:00 AM
Marathon Petroleum Corporation (MPC) is Attracting Investor Attention: Here is What You Should Know
Zacks.com users have recently been watching Marathon Petroleum (MPC) quite a bit. Thus, it is worth knowing the facts that could determine...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
MPC CyberSecurity History Information
Official Website of Marathon Petroleum Corporation
The official website of Marathon Petroleum Corporation is http://www.marathonpetroleum.com/.
Marathon Petroleum Corporation’s AI-Generated Cybersecurity Score
According to Rankiteo, Marathon Petroleum Corporation’s AI-generated cybersecurity score is 805, reflecting their Good security posture.
How many security badges does Marathon Petroleum Corporation’ have ?
According to Rankiteo, Marathon Petroleum Corporation currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Marathon Petroleum Corporation been affected by any supply chain cyber incidents ?
According to Rankiteo, Marathon Petroleum Corporation has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Marathon Petroleum Corporation have SOC 2 Type 1 certification ?
According to Rankiteo, Marathon Petroleum Corporation is not certified under SOC 2 Type 1.
Does Marathon Petroleum Corporation have SOC 2 Type 2 certification ?
According to Rankiteo, Marathon Petroleum Corporation does not hold a SOC 2 Type 2 certification.
Does Marathon Petroleum Corporation comply with GDPR ?
According to Rankiteo, Marathon Petroleum Corporation is not listed as GDPR compliant.
Does Marathon Petroleum Corporation have PCI DSS certification ?
According to Rankiteo, Marathon Petroleum Corporation does not currently maintain PCI DSS compliance.
Does Marathon Petroleum Corporation comply with HIPAA ?
According to Rankiteo, Marathon Petroleum Corporation is not compliant with HIPAA regulations.
Does Marathon Petroleum Corporation have ISO 27001 certification ?
According to Rankiteo,Marathon Petroleum Corporation is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Marathon Petroleum Corporation
Marathon Petroleum Corporation operates primarily in the Oil and Gas industry.
Number of Employees at Marathon Petroleum Corporation
Marathon Petroleum Corporation employs approximately 16,461 people worldwide.
Subsidiaries Owned by Marathon Petroleum Corporation
Marathon Petroleum Corporation presently has no subsidiaries across any sectors.
Marathon Petroleum Corporation’s LinkedIn Followers
Marathon Petroleum Corporation’s official LinkedIn profile has approximately 361,338 followers.
NAICS Classification of Marathon Petroleum Corporation
Marathon Petroleum Corporation is classified under the NAICS code 211, which corresponds to Oil and Gas Extraction.
Marathon Petroleum Corporation’s Presence on Crunchbase
Yes, Marathon Petroleum Corporation has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/marathon-petroleum.
Marathon Petroleum Corporation’s Presence on LinkedIn
Yes, Marathon Petroleum Corporation maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/marathon-petroleum-company.
Cybersecurity Incidents Involving Marathon Petroleum Corporation
As of January 22, 2026, Rankiteo reports that Marathon Petroleum Corporation has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Marathon Petroleum Corporation has an estimated 10,646 peer or competitor companies worldwide.
Marathon Petroleum Corporation CyberSecurity History Information
How many cyber incidents has Marathon Petroleum Corporation faced ?
Total Incidents: According to Rankiteo, Marathon Petroleum Corporation has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Marathon Petroleum Corporation ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
SummaryA command injection vulnerability (CWE-78) has been found to exist in the `wrangler pages deploy` command. The issue occurs because the `--commit-hash` parameter is passed directly to a shell command without proper validation or sanitization, allowing an attacker with control of `--commit-hash` to execute arbitrary commands on the system running Wrangler. Root causeThe commitHash variable, derived from user input via the --commit-hash CLI argument, is interpolated directly into a shell command using template literals (e.g., execSync(`git show -s --format=%B ${commitHash}`)). Shell metacharacters are interpreted by the shell, enabling command execution. ImpactThis vulnerability is generally hard to exploit, as it requires --commit-hash to be attacker controlled. The vulnerability primarily affects CI/CD environments where `wrangler pages deploy` is used in automated pipelines and the --commit-hash parameter is populated from external, potentially untrusted sources. An attacker could exploit this to: * Run any shell command. * Exfiltrate environment variables. * Compromise the CI runner to install backdoors or modify build artifacts. Credits Disclosed responsibly by kny4hacker. Mitigation * Wrangler v4 users are requested to upgrade to Wrangler v4.59.1 or higher. * Wrangler v3 users are requested to upgrade to Wrangler v3.114.17 or higher. * Users on Wrangler v2 (EOL) should upgrade to a supported major version.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data as well as unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L).
Risk Information
cvss3
Base: 8.1
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=marathon-petroleum-company' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
