What is the official website of Pwani Oil Group ?

The official website of Pwani Oil Group is http://www.pwani.net.

What is Pwani Oil Group's cybersecurity risk score?

Pwani Oil Group has an AI-generated cybersecurity risk score of 765 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Pwani Oil Group experienced?

According to Rankiteo, Pwani Oil Group currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Pwani Oil Group been affected by any supply chain cyber incidents ?

According to Rankiteo, Pwani Oil Group has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Pwani Oil Group have SOC 2 Type 1 certification ?

According to Rankiteo, Pwani Oil Group is not certified under SOC 2 Type 1.

Does Pwani Oil Group have SOC 2 Type 2 certification ?

According to Rankiteo, Pwani Oil Group does not hold a SOC 2 Type 2 certification.

Does Pwani Oil Group comply with GDPR ?

According to Rankiteo, Pwani Oil Group is not listed as GDPR compliant.

Does Pwani Oil Group have PCI DSS certification ?

According to Rankiteo, Pwani Oil Group does not currently maintain PCI DSS compliance.

Does Pwani Oil Group comply with HIPAA ?

According to Rankiteo, Pwani Oil Group is not compliant with HIPAA regulations.

Does Pwani Oil Group have ISO 27001 certification ?

According to Rankiteo,Pwani Oil Group is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Pwani Oil Group operate in ?

Pwani Oil Group operates primarily in the Manufacturing industry.

How many employees does Pwani Oil Group have ?

Pwani Oil Group employs approximately 849 people worldwide.

Does Pwani Oil Group own any subsidiaries ?

Pwani Oil Group presently has no subsidiaries across any sectors.

How many LinkedIn followers does Pwani Oil Group have ?

Pwani Oil Group's official LinkedIn profile has approximately 29,995 followers.

What is the NAICS classification code for Pwani Oil Group ?

Pwani Oil Group is classified under the NAICS code 30, which corresponds to Manufacturing.

Does Pwani Oil Group have a Crunchbase profile ?

No, Pwani Oil Group does not have a profile on Crunchbase.

Does Pwani Oil Group have a LinkedIn profile ?

Yes, Pwani Oil Group maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/pwani-oil-group.

How many cybersecurity incidents has Pwani Oil Group experienced ?

As of June 30, 2026, Rankiteo reports that Pwani Oil Group has not experienced any cybersecurity incidents.

How many peer or competitor companies does Pwani Oil Group have ?

Pwani Oil Group has an estimated 8,159 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

POG

Boost Score +25 with badge (5 left)

765

/1000

Fair

790

/1000

Fair

Pwani Oil Group Vendor Cyber Rating & Cyber Score

pwani.net

Add Your Compliance Badge

Welcome to Pwani Life! karibu nyumbani Pwani Pwani helps its customers enjoy their daily lives in confidence: ... cooking healthily ... cleaning effectively ... washing hygienically with great quality products at sensible affordable prices. Based in Kenya on the shores of the Indian Ocean ("Pwani" is the Swahili word for "Coast"); with a number of well known brands across East Africa - our mission is to be an efficient, profitable and great company to work for and to do business with. Committed to excellence: we grow our business by being Open, Honest & Fair. We invest in technology to grow our business internationally and we invest in our staff & community. We believe it's important to make choices which protect our natural

POG A.I CyberSecurity Scoring

Scoring History

POG

Pwani Oil Group CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

POG Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for POG

Incidents vs Manufacturing Industry Avg (This Year)

No incidents recorded for Pwani Oil Group in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Pwani Oil Group in 2026.

Incident Types POG vs Manufacturing Industry Avg (This Year)

No incidents recorded for Pwani Oil Group in 2026.

Incident History - POG (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Pwani Oil Group Subsidiaries

Parent Company

POG

Manufacturing

Website: http://www.pwani.net

Company Size: 849

No subsidiary data available for this company.

Loading…

Pwani Oil Group Similar Companies

Celestica

cb celestica.com

Celestica is a technology leader dedicated to driving customer success and market advancements. With deep expertise in design, engineering, manufacturing, supply chain and platform solutions, Celestica enables critical data center infrastructure for AI, cloud, and hybrid cloud and advances technologies in high-growth markets. With a talented team and a strategic global network, Celestica helps its customers achieve a competitive advantage.

Arçelik Türkiye

arcelikglobal.com

Arçelik Türkiye olarak, "Dünyaya Saygılı Dünyada Saygın" misyonuyla yola çıkıyoruz ve teknoloji, insan kaynağı ve üretim gücümüzü sürdürülebilir bir gelecek için kullanıyoruz. 1955 yılında başlayan yolculuğumuz bugün, 22 marka, 46 üretim tesisi, 55.000 çalışan ve 58 ülkedeki 125 iştirak ile global bir varlık olarak devam ediyor. Arçelik markaları arasında Arçelik, Beko, Whirlpool*, Grundig, Hotpoint, Arctic, Ariston*, Leisure, Indesit, Blomberg, Defy, Dawlance, Hitachi*, Voltas Beko, Singer, ElektraBregenz, Flavel, Bauknecht, Privileg, Altus, Ignis ve Polar bulunmaktadır. Vizyonumuz, kendimizi sürekli yenileyerek ve sektörümüzde liderliği sürdürerek, dijitalleşen hanelerin ve şirketlerin güvenilir çözüm ortağı olmaktır. 31 Ar-Ge ve Tasarım Merkezi ile inovasyon ve sürdürülebilirlik konularında öncü rol oynamaktayız. *Limitli marka kullanım hakkına sahiptir.

Alpargatas S.A.

alpargatas.com.br

We are a global company, founded and based in Brazil for over 115 years. We are committed to delight the world with amazing brands, that convey lightness and joy to the everyday lives of our consumers. We own Havaianas brand, world leader in open shoes, known for the iconic flip-flops that represent Brazilianness, comfort and style. We have 49.2% of Rothy’s a north-american sustainable footwear Brand. The Havaianas brand is one of the largest open-toe footwear brands in the world, with a significant presence and operation in dozens of countries. Rothy’s is present in the United States. Our growth is based on sustainability and economy, always valuing the socio-environmental responsibility of our operations. Our supply chain is vertical, with four manufacturing units in Brazil, and we own ioasys, our digital transformation company. We are more than 10 thousand employees, passionate about make it happen, who want to inspire the world to walk a lighter path. #WeAreAlpaLovers – Inspired by consumers and we walk together to make it happen!

Prysmian

prysmian.com

Prysmian is a global cabling solutions provider leading the energy transition and digital transformation. By leveraging its wide geographical footprint and extensive product range, its track record of technological leadership and innovation, and a strong customer base, the company is well-placed to capitalise on its leading positions and win in new, growing markets. Prysmian’s business strategy perfectly matches key market drivers by developing resilient, high-performing, sustainable and innovative cable solutions in the segments of Transmission, Power Grid, Electrification and Digital Solutions. Prysmian is a public company listed on the Italian Stock Exchange, with almost 150 years of experience, over 33,000 employees, 109 plants and 27 R&D centres in over 50 countries, and sales of over €17 billion in 2024.

A. O. Smith Corporation

aosmith.com

Celebrating its 150th year of business, A. O. Smith is a leading global water technology and manufacturing company that proudly employs more than 12,000 people who together provide water heating and water treatment solutions. The company is headquartered in Milwaukee, Wisconsin, with operations in the United States, Canada, Mexico, China, India, the United Kingdom and the Netherlands. The company also has sales and distribution in more than 60 countries around the world. As a global water technology leader, A. O. Smith applies innovative technology and energy-efficient solutions to products marketed worldwide. Our focus is on building this platform through new product development, global expansion, strategic acquisitions and partnerships.

DuPont

dupont.com

Beware of recruitment scams! Please read important information for job seekers: https://www.dupont.com/careers/hiring-faqs.html We’re creating advanced solutions that help transform industries and improve everyday life across our key markets of healthcare, water, construction and transformation. At DuPont, we inspire each employee to embrace their unique journey and unlock their full potential. Discover the many reasons to work at DuPont. Learn more at dupont.com. Please take the time to review our comments policy before commenting on our page. http://dptn.ws/policy

Unilever

unilever.com

Every day, 3.4 billion people around the world enjoy our products - from ground-breaking brands like Hellmann's, Domestos, Dove and Rexona (to name just a few). Our brands lead the way - innovating in their fields, delighting their consumers and powering our business forward. And it is our people who make everything happen. Our bright and curious people who imagine and create the future - diverse, passionate and ambitious people. A role with us means endless opportunities with global brands that make markets and people who play to win. We make markets and create cultures through some of the biggest brands and best-known products in the world. Talented teams in 190 countries redefine the way we do business and set new standards for our brands. Always learning, always innovating. Is this your moment?

Dräger

draeger.com

Dräger is an international leader in the fields of medical and safety technology. The family-owned company was founded in Lübeck, Germany, in 1889. The company’s long-term success is based on the four key strengths of its value-driven culture: customer intimacy, professional employees, continuous innovation and a commitment to outstanding quality. Dräger offers its customers anaesthesia workstations, medical ventilation, patient monitoring as well as neonatal care for premature babies and newborns. With ceiling supply units, IT solutions for the OR, and gas management systems the company is at the customer’s side throughout the entire hospital. Emergency response services, law and regulatory enforcement and the industry trust in Dräger’s integrated hazard management, in particular for personal protection and plant safety. This includes: respiratory protection equipment, stationary and portable gas detection systems, professional diving equipment and systems, as well as alcohol and drug impairment detection. In collaboration with its customers Dräger develops customized solutions, such as entire fire training systems, training concepts and workshops. Dräger has more than 13.700 employees worldwide and is currently present in more than 190 countries. The company has sales and service subsidiaries in over 40 countries. Its development and production facilities are based in Germany, Great Britain, Sweden, South Africa, the USA, Brazil, the Czech Republic and China. http://t4.life/dataprotection Drägerwerk AG & Co. KGaA Board of Managing Directors: Stefan Dräger (Chairman), Rainer Klug, Gert-Hartwig Lescow, Dr. Reiner Piske, Anton Schrofner Company registered at Lübeck Local Court Register of Companies Number: HRB 7903 HL Turnover tax identification number as per § 27a Turnover Tax Law: DE 135082211 General partner: Drägerwerk Verwaltungs AG Company registered at Lübeck Local Court Register of Companies Number: HRB 7395 HL

Philip Morris International

pmi.com

Philip Morris International (PMI) is a leading international consumer goods company working to deliver a smoke-free future and evolving its portfolio for the long term to include products outside of the tobacco and nicotine sector. Since 2008, PMI has invested more than USD 15 billion to develop, scientifically substantiate and commercialize innovative smoke-free products for adults who would otherwise continue to smoke, with the goal of completely ending the sale of cigarettes. In November 2022, PMI acquired Swedish Match – a leader in oral nicotine delivery – creating a global smoke-free champion led by the companies’ IQOS and ZYN brands. As of Q2 2025, PMI's smoke-free products were available for sale in 97 markets and smoke-free products accounted for approximately 41% of net revenues. With a strong foundation and significant expertise in life sciences, PMI announced in February 2021 its ambition to expand into wellness and healthcare areas and aims to enhance life through the delivery of seamless health experiences. For more information, please visit www.pmi.com and www.pmiscience.com. Our priority is to attract, support and keep with us diverse and unique individuals. Our global workforce of more than 69,000 people is one of our greatest strengths and the key to our success as a company. Our employees speak more than 80 languages and come from all corners of the world. PMI has also been certified as a “Global Top Employer” for the seventh consecutive year, in recognition of the high standards of excellence in our working environment and the exceptional development opportunities we offer. If you come into our offices or meet our people, you will quickly realize that at PMI everyone has the opportunity to make a difference and build phenomenal careers.

Loading…

NEWS

Pwani Oil Group CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

October 29, 2025 07:00 AM

Pwani Oil Founder Naresh Malde Is Dead

Naresh Malde, the founder of Pwani Oil Products Limited — one of East Africa's most successful manufacturers of edible oils, soaps,...

Read Article

September 20, 2020 07:00 AM

PZ Cussons sells Ushindi soap to Pwani Oil for Sh107m

Mombasa based, Pwani Oil, has acquired Ushindi soap brand from consumer goods firm PZ Cussons for Sh107 million.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-8023

SUMMARY

Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STATIC_FS, available when CONFIG_FILE_SYSTEM is enabled) that serves files from a configured root directory. Before this fix, both the HTTP/1 and HTTP/2 front-ends placed the raw, attacker-controlled request path into client-url_buffer (assembled in on_url() for HTTP/1 and copied verbatim from the :path pseudo-header for HTTP/2) without resolving ./.. segments. The static-FS handler then built the on-disk filename by directly concatenating the configured root with that raw URL (snprintk(fname, ..., "%s%s", static_fs_detail-fs_path, client-url_buffer) at http_server_http1.c:603 and http_server_http2.c:490) and opened it with fs_open(fname, FS_O_READ). Because the handler is reached via wildcard/leading-dir (fnmatch FNM_LEADING_DIR) or fallback resource matching, a request such as GET /<prefix/../../<file is dispatched to the handler and, after the underlying filesystem (e.g. LittleFS/FAT) resolves the .. segments, escapes the configured web root, letting an unauthenticated remote client read arbitrary readable files on the mounted volume (information disclosure). The HTTP server requires no TLS or authentication to reach this path. The fix adds http_server_remove_dot_segments(), which canonicalizes the path portion of the URL before resource lookup in both protocol handlers, neutralizing the traversal. Affects releases v4.0.0 through v4.4.0 for deployments that register a static-filesystem resource.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 7.5)

cvss3

Base Score: 7.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score

3.6

Exploitability

3.9

REFERENCES

CVE-2026-7656

SUMMARY

The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_input) used an incorrect boolean expression that combined the RFC 4861 validity checks with the ICMPv6 code check using the wrong operator precedence: the form was '((length/hop/source/target checks) && (icmp_hdr-code != 0))'. Because every legitimate ND message carries ICMPv6 code 0, an attacker setting code == 0 (the normal value) caused the entire predicate to evaluate false, so the packet was never dropped and all of the other checks were silently skipped. The bypassed checks include the mandatory Hop Limit == 255 verification (which proves an ND packet originated on-link and was not forwarded) and, for Router Advertisements, the requirement that the source be a link-local address, as well as multicast-target sanity checks. As a result, an adjacent on-link attacker — and, because the Hop-Limit-255 guard is bypassed, potentially a remote/off-link attacker whose packets would otherwise be rejected — can have forged Router Advertisement, Neighbor Solicitation, and Neighbor Advertisement messages accepted. A forged RA lets the attacker reconfigure the victim's default router, on-link prefixes (SLAAC), MTU, reachable/retransmit timers, and (with CONFIG_NET_IPV6_RA_RDNSS) DNS servers, while forged NS/NA enable neighbor-cache poisoning, enabling man-in-the-middle, traffic redirection, and denial of service. The flaw is an input-validation/authentication weakness rather than a memory-safety issue: the underlying packet-parsing primitives (net_pkt_get_data, net_pkt_read, net_pkt_skip) are independently bounds-safe and the validated 'length' is the true buffer length, so skipping the length check causes no out-of-bounds access. The defect has existed since the logic was introduced in 2018 and shipped in all releases through v4.4.0; it is fixed by splitting the condition so any failing check drops the packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 8.1)

cvss3

Base Score: 8.1

Complexity: LOW

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Impact Score

5.2

Exploitability

2.8

REFERENCES

CVE-2026-51219

SUMMARY

A heap buffer overflow in the HighPriorityASDUQueue_hasUnconfirmedIMessages function of lib60870 v2.3.3 to v2.3.6 allows attackers to cause a Denial of Service (DoS) via a crafted payload.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-51218

SUMMARY

A heap buffer overflow in the TS7Worker::PerformFunctionWrite() function (/core/s7_server.cpp) of snap7 v1.4.3 allows attackers to cause a Denial of Service (DoS) via a crafted packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-10648

SUMMARY

mcumgr_serial_process_frag() in subsys/mgmt/mcumgr/transport/src/serial_util.c calls net_buf_reset() on the result of smp_packet_alloc() before checking it for NULL. smp_packet_alloc() uses net_buf_alloc(K_NO_WAIT) against the shared MCUmgr packet pool (CONFIG_MCUMGR_TRANSPORT_NETBUF_COUNT, default 4), which returns NULL when the pool is exhausted. In default builds the __ASSERT_NO_MSG in net_buf_reset is a no-op, so net_buf_simple_reset writes through the NULL pointer (buf->len = 0; buf->data = buf->__buf), causing a fault/crash. The fragment data reaches this code from attacker-controlled bytes on the MCUmgr serial/UART/shell-console transports (smp_uart.c, smp_raw_uart.c, smp_shell.c), and a fresh buffer is allocated at the start of essentially every new packet. An attacker on the serial/console link can flood the transport to drive the 4-entry buffer pool to exhaustion and induce the NULL dereference, crashing the device (denial of service). The defect was introduced after the original MCUmgr rework and shipped in Zephyr v4.4.0. The fix moves the NULL check ahead of net_buf_reset.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 6.2)

cvss3

Base Score: 6.2

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score

3.6

Exploitability

2.5

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…