PPC A.I CyberSecurity Scoring
04/03/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for Par Petroleum Corp in 2026.
No incidents recorded for Par Petroleum Corp in 2026.
No incidents recorded for Par Petroleum Corp in 2026.
Ecopetrol (NYSE: EC) es la compañía más grande en Colombia y uno de los principales grupos de energía de Latinoamérica. Cuenta con más de 18.000 empleados y es responsable del 60% de la producción de hidrocarburos en Colombia. Es propietaria de las dos refinerías del Colombia y de la gran parte de la infraestructura del segmento de transporte. A su vez, participa en la venta de energía y distribución de gas. En el panorama internacional, el foco estratégico de Ecopetrol se concentra en las cuencas del continente americano. Tiene operación y participa en proyectos de exploración y producción en Estados Unidos (Cuenca Permian y Golfo de México), Brasil y México. Como parte de la estrategia de sosTECnibilidad, la compañía lidera diferentes iniciativas en aspectos claves como descarbonización, energías renovables, gestión del agua, Desarrollo sostenible del territorio y transformación digital. Ecopetrol (NYSE: EC) is the largest company in Colombia and one of the leading integrated energy groups in the American continent, with operations in over eight countries. Its operations span the hydrocarbons value chain (upstream, midstream, downstream), gas distribution, energy transmission, management of real-time systems, road concessions, and telecommunications. As part of its TESG agenda (Technology, Environmental, Social and Governance), the company is leading several initiatives for diversification and decarbonization through, among others, renewables, electrification, natural climate solutions, and hydrogen. All the above, underpinned by innovation and technology as catalyzers of sustainability.
Petróleos Mexicanos es la mayor empresa de México, el mayor contribuyente fiscal del país, así como una de las empresas más grandes de América Latina. Es de las pocas empresas petroleras del mundo que desarrolla toda la cadena productiva de la industria, desde la exploración, hasta la distribución y comercialización de productos finales, incluyendo la petroquímica. Pemex contribuye el 35% del PEF, en otras palabras aporta 1 de cada 3 pesos para la construcción de escuelas, carreteras y hospitales. La tasa de éxito en exploración en aguas profundas es del 50% siendo superior al estándar internacional. En el 2014 las inversiones fueron por más de 25 mil millones de dólares. Pemex generó más de medio millón de empleos indirectos. Anualmente Pemex invierte cerca de 140 millones de dólares en donativos
Marathon Petroleum Corporation (MPC) is a leading, integrated, downstream and midstream energy company headquartered in Findlay, Ohio. The company operates the nation's largest refining system. MPC's marketing system includes branded locations across the United States, including Marathon brand retail outlets. MPC also owns the general partner and majority limited partner interest in MPLX LP, a midstream company that owns and operates gathering, processing, and fractionation assets, as well as crude oil and light product transportation and logistics infrastructure. More information is available at www.marathonpetroleum.com.
We collaborate and engineer solutions to maximize asset value for our customers. Founded in 1919, Halliburton is one of the world's largest providers of products and services to the energy industry. With more than 45,000 employees, representing 130 nationalities in more than 80 countries, the company helps its customers maximize value throughout the lifecycle of the reservoir – from locating hydrocarbons and managing geological data, to drilling and formation evaluation, well construction and completion, and optimizing production throughout the life of the asset.
Oxy is an international energy company with assets primarily in the United States, the Middle East and North Africa. We are one of the largest oil producers in the U.S., including a leading producer in the Permian and DJ basins, and offshore Gulf of Mexico. Our midstream and marketing segment provides flow assurance and maximizes the value of our oil and gas. Our Oxy Low Carbon Ventures subsidiary is advancing leading-edge technologies and business solutions that economically grow our business while reducing emissions. We are committed to using our global leadership in carbon management to advance a lower-carbon world. Visit oxy.com for more information.
Valero is an international manufacturer and marketer of transportation fuels and petrochemical products. We are a Fortune 500 company based in San Antonio, Texas, fueled by nearly 10,000 employees and 15 petroleum refineries with a combined throughput capacity of approximately 3.2 million barrels per day. We also proudly operate 12 ethanol plants in the Mid-Continent of the U.S., with a combined production capacity of 1.6 billion gallons per year. Our petroleum refineries are located in the United States, Canada and the United Kingdom. Valero also is a joint venture partner in Diamond Green Diesel, which operates a renewable diesel plant in Norco, Louisiana. Diamond Green Diesel is North America’s largest biomass-based diesel plant. Valero sells its products in the wholesale rack or bulk markets in the U.S., Canada, the U.K., Ireland and Latin America. Approximately 7,000 outlets carry Valero’s brand names. Visit www.valero.com for more information, and click 'Careers' to explore opportunities!
Wood Group has combined with Amec Foster Wheeler to form a new global leader in the delivery of project, engineering and technical services to energy and industrial markets. To find out more about Wood visit our new website at www.woodplc.com For all the latest updates and job news follow Wood on LinkedIn https://www.linkedin.com/company/wood-group/
Petroliam Nasional Berhad (PETRONAS) is a leading global energy company committed to powering society’s progress in a responsible and sustainable manner. With close to 50,000 employees and a global reach spanning over 100 countries, we are ranked among the world’s largest corporations by revenue in the Fortune Media IP Ltd’s 2022 Fortune Global 500® list. As Malaysia’s national oil and gas company, we safeguard and manage the nation’s hydrocarbon resources to ensure national energy security and maximise value. We explore, develop and produce hydrocarbons as well as cleaner energy solutions. We have three core businesses, namely Upstream, Gas and Downstream, supported by Project Delivery and Technology division, which acts as an enabler. We recently launched Gentari, our new entity providing customers with cleaner energy and lower carbon solutions in three core offerings – renewables, hydrogen and green mobility alongside our core portfolio. We remain committed to produce oil and gas in a differentiated manner, with focus on reducing carbon emissions and at competitive cost. Our hydrocarbon portfolio today is two-thirds gas, which puts us in an advantageous position as gas and Liquefied Natural Gas (LNG) will continue to play a vital role even as the energy system evolves. As one of the leading LNG players in the world, PETRONAS will continue to serve the global LNG demand. As a responsible and conscientious global energy player, sustainability is at the heart of our business and how we operate. Our commitment to responsible business growth and positive contributions to society and the environment remains unwavering. Fuelled by our passion to be a partner for our customers in the journey towards a lower carbon energy future, every step we take brings us closer towards achieving our aspiration of Net Zero Carbon Emissions by 2050 (NZCE 2050).
Tenaris is a leading supplier of tubes and related services for the world’s energy industry and certain other industrial applications. Our mission is to deliver value to our customers through product development, manufacturing excellence, and supply chain management. Tenaris employees around the world are committed to continuous improvement by sharing knowledge across a single global organization. Our customers include most of the world’s leading oil and gas companies as well as engineering companies engaged in constructing oil and gas gathering, transportation and processing facilities. Our principal products include casing, tubing, line pipe, and mechanical and structural pipes. Tenaris employs around 29,000 people from more than 25 countries. From the moment they enter the company, our employees follow a career plan specially designed to meet their professional goals. TenarisUniversity, Tenaris’s corporate university, offers high-quality, job-specific curricula and development plans that help them succeed in the many challenging assignments faced during their careers. Our employees work in a culturally diverse setting that enriches their professional as well as their personal lives. As part of our fundamental corporate values, Tenaris offers our employee an active participation in a long-term, sustainable industrial project. RECRUITMENT FRAUD: We’ve received reports that unauthorized individuals are fraudulently recruiting and extending fake job offers on behalf of Tenaris. We encourage prospective candidates to remain vigilant. Additional information on how to recognize recruitment fraud or scams can be found at: https://www.tenaris.com/en/careers/recruitment-fraud Please remember that Tenaris never asks job applicants to pay a fee as part of the recruitment process.
Latest updates, reports, and threat intel affecting the global network.
Par Pacific Holdings, Inc., a diversified energy company with operations in refining, retail, and logistics, has released its 2025 10-K...
HedgeDoc is an open source, real-time collaborative markdown notes application. Prior to 1.11.0, the GitHub Gist export flow created an OAuth2 state value but only checked that it was present rather than validating it against the value expected for the user's session. Because the state was not properly validated, an attacker could forge a callback URL containing their own valid GitHub OAuth code. When processing the callback, HedgeDoc used the victim's logged-in session to select which note to export, but the attacker's authorization code to determine which GitHub account received it. As a result, a logged-in victim who clicked a crafted link could export their own private, protected, or limited note directly into a Gist controlled by the attacker. This issue has been fixed in version 1.11.0.
HedgeDoc is an open source, real-time, collaborative, markdown notes application. Prior to version 1.11.0, HedgeDoc was vulnerable to a YAML alias bomb due to unsafe processing of the note frontmatter. HedgeDoc parsed frontmatter with js-yaml.load (js-yaml v3) via @hedgedoc/meta-marked, which resolved YAML anchor aliases. A compact malicious payload could therefore expand into a huge object structure, consuming excessive CPU. This expansion ran on every request to the publish view (/s/<shortid>) and, when placed under the opengraph key, the editor view (/<noteId>). A ten-level alias bomb could block the single Node.js event loop for roughly 235 seconds per request, causing concurrent requests to hang or drop and rendering the instance unavailable (DoS). Because the note was stored in the database, the impact survived process restarts until the note was removed. toobusy-js did not reliably mitigate the worst cases, as the event loop was saturated before the middleware could respond. This issue was fixed in version 1.11.0.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hv_exts. When building the extension hash (via extensions(), extensions_by_long_name(), extensions_by_oid(), or has_extension_oid()), the code passes OBJ_obj2txt()'s return value as the hash-key length; because that value is the OID's full text length rather than the bytes written to the fixed-size buffer (129 bytes), an OID whose text is longer than the 129-byte buffer causes a read past the allocation, exposing adjacent heap memory as the returned hash key. extensions_by_name() uses the static shortname path and is not affected.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow denial of service via NULL pointer dereference. X509V3_EXT_d2i(ext) returns NULL when an extension's DER value fails to parse. basicC, ia5string, and auth_att dereference its result without a NULL check. keyid_data also dereferences akid->keyid, which is NULL for an empty AKI SEQUENCE (DER 30 00) even when the parse succeeds. A caller invoking an affected helper on an extension from an untrusted certificate triggers a SIGSEGV that crashes the Perl process.
Cockpit CMS contains a path traversal vulnerability in the Bucket file storage API (/system/buckets/api). The api() method in modules/System/Controller/Buckets.php sanitizes the bucket name with preg_replace('/[^a-zA-Z0-9-_\\.]/','', $bucket), which permits '..' and '../' sequences. The sanitized value is interpolated into a Flysystem path as uploads://buckets/{bucket}. Flysystem's WhitespacePathNormalizer resolves 'buckets/..' to the empty string (the uploads storage root) without raising PathTraversalDetected because the '..' has a preceding component to consume. An authenticated low-privileged user can send a crafted request with a '../' bucket name to list, upload, and delete files across all buckets, including those belonging to other users or roles
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.