MENR A.I CyberSecurity Scoring
03/04/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for Ministry of Energy & Natural Resources in 2026.
No incidents recorded for Ministry of Energy & Natural Resources in 2026.
No incidents recorded for Ministry of Energy & Natural Resources in 2026.
Public Policy Offices
Latest updates, reports, and threat intel affecting the global network.
On February 25, the Ministry of Foreign Affairs (MOFA) held the Asia Energy Security Seminar 2026 under the theme of “The Role of Diplomacy...
New Delhi, March 19, 2026: The Ministry of Coal has reaffirmed that coal continues to play a vital role in ensuring the country's energy...
Cambodia is relying on Singapore and Malaysia as critical energy lifelines as domestic gas, oil and fuel prices continue to climb,...
The Minister for Energy and Green Transition, John Abdulai Jinapor, has announced plans to establish a dedicated online portal for the...
Brent crude spiked more than 5 per cent to over $110 a barrel on Wednesday after Israel struck the world's largest natural gas reserve...
With the message “Green Innovation – Green Future”, on the morning of March 21, 2026, in Ha Noi, the Ministry of Industry and Trade will...
In Bishkek, an event dedicated to the implementation of renewable energy sources in agriculture took place at the I. Razakov Kyrgyz State...
Iranian military forces launched a missile strike on the industrial city of Ras Laffan in Qatar, where the world's largest liquefied natural...
Pakistan's Energy Ministry claims electricity consumption has risen, citing the trend as a positive indicator for the national energy sector...
A security vulnerability has been detected in Sipeed PicoClaw up to 0.2.9. The affected element is the function handleMessageReceive of the file pkg/channels/feishu/feishu_64.go of the component Group Message Handler. Such manipulation leads to missing authorization. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. The reported GitHub issue was closed automatically due to inactivity.
A weakness has been identified in Sipeed PicoClaw up to 0.2.9. Impacted is the function isPrivateOrRestrictedIP of the file pkg/tools/integration/web.go of the component web_fetch. This manipulation causes server-side request forgery. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks. Patch name: 2efbe5d560e7ed9bc5209c203dc4aa6ecdbc7405. To fix this issue, it is recommended to deploy a patch.
A security flaw has been discovered in Sipeed PicoClaw up to 0.2.9. This issue affects the function dispatchIncoming of the file pkg/channels/wecom/wecom.go of the component Group Message Handler. The manipulation results in incorrect authorization. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for attacks. The reported GitHub issue was closed automatically due to inactivity.
QueryWeaver contains an authentication bypass vulnerability that allows unauthenticated attackers to obtain valid session tokens for existing accounts by submitting a signup request with a known victim email address. The signup route unconditionally creates and links a new token to the matching Identity via a Cypher MERGE operation before checking whether the email belongs to an existing account, causing the server to return a valid authenticated session token for the victim's identity without requiring any prior credentials or user interaction.
A vulnerability was determined in zhayujie CowAgent up to 2.1.1. This affects the function WebFetch.execute of the file agent/tools/web_fetch/web_fetch.py. Executing a manipulation of the argument url can lead to server-side request forgery. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized. Upgrading to version 2.1.2 is able to mitigate this issue. This patch is called ea47f3097eed4f8295c4cb3d76ecb97e0f43d632. It is recommended to upgrade the affected component. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.