What is the official website of XL Systems ?

The official website of XL Systems is https://www.nov.com/about/our-business-units/xl-systems.

What is XL Systems's cybersecurity risk score?

XL Systems has an AI-generated cybersecurity risk score of 746 out of 1000, indicating a Moderate security posture according to Rankiteo's assessment.

How many security incidents has XL Systems experienced?

According to Rankiteo, XL Systems currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has XL Systems been affected by any supply chain cyber incidents ?

According to Rankiteo, XL Systems has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does XL Systems have SOC 2 Type 1 certification ?

According to Rankiteo, XL Systems is not certified under SOC 2 Type 1.

Does XL Systems have SOC 2 Type 2 certification ?

According to Rankiteo, XL Systems does not hold a SOC 2 Type 2 certification.

Does XL Systems comply with GDPR ?

According to Rankiteo, XL Systems is not listed as GDPR compliant.

Does XL Systems have PCI DSS certification ?

According to Rankiteo, XL Systems does not currently maintain PCI DSS compliance.

Does XL Systems comply with HIPAA ?

According to Rankiteo, XL Systems is not compliant with HIPAA regulations.

Does XL Systems have ISO 27001 certification ?

According to Rankiteo,XL Systems is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does XL Systems operate in ?

XL Systems operates primarily in the Oil and Gas industry.

How many employees does XL Systems have ?

XL Systems employs approximately None employees people worldwide.

Does XL Systems own any subsidiaries ?

XL Systems presently has no subsidiaries across any sectors.

How many LinkedIn followers does XL Systems have ?

XL Systems's official LinkedIn profile has approximately 3,571 followers.

What is the NAICS classification code for XL Systems ?

XL Systems is classified under the NAICS code 211, which corresponds to Oil and Gas Extraction.

Does XL Systems have a Crunchbase profile ?

No, XL Systems does not have a profile on Crunchbase.

Does XL Systems have a LinkedIn profile ?

Yes, XL Systems maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/nov-xl-systems.

How many cybersecurity incidents has XL Systems experienced ?

As of June 20, 2026, Rankiteo reports that XL Systems has not experienced any cybersecurity incidents.

How many peer or competitor companies does XL Systems have ?

XL Systems has an estimated 10,951 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

XL Systems

Boost Score +25 with badge (5 left)

746

/1000

Moderate

771

/1000

Fair

XL Systems Vendor Cyber Rating & Cyber Score

nov.com

Add Your Compliance Badge

XL Systems supplies the onshore and offshore oil and gas drilling, geothermal and CCUS industries with robust and reliable connector products for conductor and surface casing strings. We’ve continuously served the industry since 1985, launching several industry-first innovations. XL Systems has a strong commitment to designing and manufacturing high-performance, large-bore connector products. We pride ourselves on being a technology leader in connector development. Our product development process includes advanced digital simulations followed by full scale physical testing to benchmark product performance. Proven products allow our customers to understand, evaluate, and quantify risks for harsh environment well construction

XL Systems A.I CyberSecurity Scoring

Scoring History

XL Systems

XL Systems CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

XL Systems Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for XL Systems

Incidents vs Oil and Gas Industry Avg (This Year)

No incidents recorded for XL Systems in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for XL Systems in 2026.

Incident Types XL Systems vs Oil and Gas Industry Avg (This Year)

No incidents recorded for XL Systems in 2026.

Incident History - XL Systems (X = Date, Y = Severity)

Loading…

SUBSIDIARY

XL Systems Subsidiaries

XL Systems

Oil and Gas

Website: https://www.nov.com/about/our-business-units/xl-systems

Company Size: 10,001+ employees

NOVOil and Gas

Tuboscope™Oil and Gas

Subsea Production SystemsOil and Gas

Downhole Technologiesالنفط والغاز

GustoMSCServices for Renewable Energy

Loading…

XL Systems Similar Companies

Oxy

cb oxy.com

Oxy is an international energy company with assets primarily in the United States, the Middle East and North Africa. We are one of the largest oil producers in the U.S., including a leading producer in the Permian and DJ basins, and offshore Gulf of Mexico. Our midstream and marketing segment provides flow assurance and maximizes the value of our oil and gas. Our Oxy Low Carbon Ventures subsidiary is advancing leading-edge technologies and business solutions that economically grow our business while reducing emissions. We are committed to using our global leadership in carbon management to advance a lower-carbon world. Visit oxy.com for more information.

NOV

nov.com

NOV delivers technology-driven solutions to empower the global energy industry. For more than 150 years, NOV has pioneered innovations that enable its customers to safely produce abundant energy while minimizing environmental impact. The energy industry depends on NOV’s deep expertise and technology to continually improve oilfield operations and assist in efforts to advance the energy transition towards a more sustainable future. NOV powers the industry that powers the world.

TotalEnergies

totalenergies.com

Have you ever thought of offering your skills and expertise to a multinational company? Give your best to better energy and make the commitment with TotalEnergies. With over 500-plus professions in 130 countries, we offer high safety and environmental standards, strong ethical values, an innovation culture and wide-ranging career development. Be part of the global team whose mission is already shared by 105,000 employees : to be a world-class player in the energy transition

Halliburton

halliburton.com

We collaborate and engineer solutions to maximize asset value for our customers. Founded in 1919, Halliburton is one of the world's largest providers of products and services to the energy industry. With more than 45,000 employees, representing 130 nationalities in more than 80 countries, the company helps its customers maximize value throughout the lifecycle of the reservoir – from locating hydrocarbons and managing geological data, to drilling and formation evaluation, well construction and completion, and optimizing production throughout the life of the asset.

Ecopetrol

ecopetrol.com.co

Ecopetrol (NYSE: EC) es la compañía más grande en Colombia y uno de los principales grupos de energía de Latinoamérica. Cuenta con más de 18.000 empleados y es responsable del 60% de la producción de hidrocarburos en Colombia. Es propietaria de las dos refinerías del Colombia y de la gran parte de la infraestructura del segmento de transporte. A su vez, participa en la venta de energía y distribución de gas. En el panorama internacional, el foco estratégico de Ecopetrol se concentra en las cuencas del continente americano. Tiene operación y participa en proyectos de exploración y producción en Estados Unidos (Cuenca Permian y Golfo de México), Brasil y México. Como parte de la estrategia de sosTECnibilidad, la compañía lidera diferentes iniciativas en aspectos claves como descarbonización, energías renovables, gestión del agua, Desarrollo sostenible del territorio y transformación digital. Ecopetrol (NYSE: EC) is the largest company in Colombia and one of the leading integrated energy groups in the American continent, with operations in over eight countries. Its operations span the hydrocarbons value chain (upstream, midstream, downstream), gas distribution, energy transmission, management of real-time systems, road concessions, and telecommunications. As part of its TESG agenda (Technology, Environmental, Social and Governance), the company is leading several initiatives for diversification and decarbonization through, among others, renewables, electrification, natural climate solutions, and hydrogen. All the above, underpinned by innovation and technology as catalyzers of sustainability.

Marathon Petroleum Corporation

cb marathonpetroleum.com

Marathon Petroleum Corporation (MPC) is a leading, integrated, downstream and midstream energy company headquartered in Findlay, Ohio. The company operates the nation's largest refining system. MPC's marketing system includes branded locations across the United States, including Marathon brand retail outlets. MPC also owns the general partner and majority limited partner interest in MPLX LP, a midstream company that owns and operates gathering, processing, and fractionation assets, as well as crude oil and light product transportation and logistics infrastructure. More information is available at www.marathonpetroleum.com.

CB&I

cb cbi.com

CB&I is the world’s leading designer and builder of storage facilities, tanks, and terminals. With more than 60,000 structures completed throughout its 135+ year history, CB&I has the global expertise and strategically located operations to provide its customers world-class storage solutions for even the most complex energy infrastructure projects. CB&I is owned by a consortium of financial investors led by Mason Capital Management LLC. To learn more, visit www.cbi.com.

Shell

cb shell.com

Shell is a global group of energy and petrochemical companies, employing 96,000 people across 70+ countries. We serve around 1 million commercial and industrial customers, and around 33 million customers daily at our Shell-branded retail service stations. Our purpose is to power progress together by working with each other, our customers and our partners. #PoweringProgress

Tenaris

tenaris.com

Tenaris is a leading supplier of tubes and related services for the world’s energy industry and certain other industrial applications. Our mission is to deliver value to our customers through product development, manufacturing excellence, and supply chain management. Tenaris employees around the world are committed to continuous improvement by sharing knowledge across a single global organization. Our customers include most of the world’s leading oil and gas companies as well as engineering companies engaged in constructing oil and gas gathering, transportation and processing facilities. Our principal products include casing, tubing, line pipe, and mechanical and structural pipes. Tenaris employs around 29,000 people from more than 25 countries. From the moment they enter the company, our employees follow a career plan specially designed to meet their professional goals. TenarisUniversity, Tenaris’s corporate university, offers high-quality, job-specific curricula and development plans that help them succeed in the many challenging assignments faced during their careers. Our employees work in a culturally diverse setting that enriches their professional as well as their personal lives. As part of our fundamental corporate values, Tenaris offers our employee an active participation in a long-term, sustainable industrial project. RECRUITMENT FRAUD: We’ve received reports that unauthorized individuals are fraudulently recruiting and extending fake job offers on behalf of Tenaris. We encourage prospective candidates to remain vigilant. Additional information on how to recognize recruitment fraud or scams can be found at: https://www.tenaris.com/en/careers/recruitment-fraud Please remember that Tenaris never asks job applicants to pay a fee as part of the recruitment process.

Loading…

NEWS

XL Systems CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

February 04, 2026 03:00 PM

SMA releases new storage system for C&I solar

German inverter and battery manufacturer SMA Solar Technology AG has unveiled a modular lithium iron phosphate battery system for commercial...

Read Article

January 26, 2026 07:28 AM

Technologies with the greatest cybersecurity impacts in the next 12 months

Artificial intelligence is set to dominate cybersecurity concerns in the coming year, with 94% of experts identifying AI-related technologies—such as...

Read Article

December 15, 2025 08:00 AM

AXA XL joins ISASecure to boost cybersecurity risk prevention by adopting ISA/IEC 62443 cybersecurity standards

The International Society of Automation (ISA), a professional society for automation, announced that AXA XL has officially joined ISASecure,...

Read Article

December 11, 2025 08:30 AM

Penumbra’s Ruby XL System Wins Awards for Vascular Innovation and Endovascular Product Launch

Penumbra is a thrombectomy company and a Dual Category Award Winner in the 2025 Medical Device Network Excellence Awards.

Read Article

November 13, 2025 08:00 AM

Lite XL Text editor Vulnerability Let Attackers Execute Arbitrary Code

A vulnerability discovered in Lite XL, a lightweight text editor, that could allow attackers to execute arbitrary code on affected systems.

Read Article

November 12, 2025 08:00 AM

Lite XL Text Editor Vulnerability Lets Attackers Execute Arbitrary Code

Lite XL, a lightweight text editor popular among developers, contains two critical vulnerabilities that could allow attackers to execute...

Read Article

November 03, 2025 08:00 AM

Markets/Coverages: AXA XL Offers Cyber Solution for Europe, APAC Construction Firms

AXA XL announced the launch of a new cyber solution designed to provide construction firms in Europe, Asia and Australia with enhanced...

Read Article

October 31, 2025 07:00 AM

AXA XL rolls out construction cyber solution across Europe and APAC

AXA XL launches a new cyber solution designed to provide enhanced protection for construction firms across Europe, Asia, and Australia.

Read Article

September 12, 2025 07:00 AM

Omolade Ikumapayi: Shaping the Future of Cybersecurity in Real-Time and Automotive Networks

Share. By Rosemary Ajayi. In today's hyperconnected world, cybersecurity has moved beyond firewalls and passwords. It now extends into the...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-56082

SUMMARY

Capgo (Cap-go/capgo) before 12.128.2 contains an improper access control vulnerability in the SECURITY DEFINER PostgREST RPC function public.record_build_time, which is granted to the anon role and callable with only the public Supabase publishable (sb_publishable_*) anon key. An unauthenticated attacker can insert rows into public.build_logs for arbitrary organizations and, because the function uses ON CONFLICT (build_id, org_id) DO UPDATE, can overwrite existing usage/billing records by reusing the same build_id for a target org. This enables cross-tenant tampering of billing build logs and financial-impact denial of service by inflating billable build time.

Published

Date2026-06-19

Updated

Date2026-06-19

RISK INFORMATION (Score: 7.5)

cvss3

Base Score: 7.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

cvss4

Base Score: 8.7

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.6

Exploitability

3.9

REFERENCES

CVE-2026-56081

SUMMARY

Cap-go before 12.128.2 contains an authentication logic flaw that lets an attacker register and control an account bound to a victim's email address before that email is verified. By enabling two-factor authentication on the pre-registered account, the attacker gains control over the account claimed under the victim's identity, allowing them to read and modify its state and enforce organization-level policies, while the legitimate user is denied access to the account tied to their own email.

Published

Date2026-06-19

Updated

Date2026-06-19

RISK INFORMATION (Score: 9.1)

cvss3

Base Score: 9.1

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.2

Exploitability

3.9

REFERENCES

CVE-2026-56080

SUMMARY

Capgo before 12.128.2 contains a flaw in the Enforce Password Policy feature: after a Super Admin enables the policy and successfully changes their password to a compliant one, the backend does not update the password-compliance state. As a result, the backend continues to treat the account as non-compliant and repeatedly forces password-reset prompts, permanently locking the Super Admin out of organization access (organization lockout / denial of service) despite valid authentication.

Published

Date2026-06-19

Updated

Date2026-06-19

RISK INFORMATION (Score: 4.9)

cvss3

Base Score: 4.9

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.6

Exploitability

1.2

REFERENCES

CVE-2026-56079

SUMMARY

Capgo before 12.128.2 contains a cross-tenant authorization bypass vulnerability in PostgREST endpoints that allows org-scoped read API keys to access other tenants' webhook secrets and delivery logs. Attackers can query the webhooks and webhook_deliveries endpoints to exfiltrate HMAC signing secrets and delivery payloads, enabling forged webhook events against victim organizations.

Published

Date2026-06-19

Updated

Date2026-06-19

RISK INFORMATION (Score: 6.5)

cvss3

Base Score: 6.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

cvss4

Base Score: 7.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.6

Exploitability

2.8

REFERENCES

CVE-2026-56073

SUMMARY

Cap-go before 12.128.2 contains an authentication bypass vulnerability in OTP verification that allows attackers to bypass email verification by modifying server responses. Attackers can intercept OTP verification requests and manipulate HTTP responses to falsely mark verification successful, enabling unauthorized 2FA enablement and account takeover.

Published

Date2026-06-19

Updated

Date2026-06-19

RISK INFORMATION (Score: 9.4)

cvss3

Base Score: 9.4

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.5

Exploitability

3.9

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…