One of the largest energy corporation in the world and is a super-large petroleum and petrochemical enterprise grou
ОАО Oil and Gas Company «RussNeft» came into existence in September 2002 . The structure of OAO NK “RussNeft” counts 24 upstream enterprises, 2 refineries, its own distribution net of gas filling stations. Geographic reach of “RussNeft” covers 12 regions of Russia and CIS: Khanty-Mansi Autonomous District, Yamalo-Nenets Autonomous District, Tomsk, Ulianovsk, Penza, Briansk, Saratov, Kirov and Orenburg regions, the Republics of Udmurtia and Belarus. The head office of the Company is in Moscow. The Company is developing 167 oil and gas fields. The net effective pay of the company exceeds 600 million tons. The total amount of oil produced by the enterprises of the company is 13 million tons. In accordance with the approved long-term strategy of development “RussNeft is going within a 7-year period to build up the volume of production by more than one third. The total throughput of the refineries is 5.134 million tons. Since 2011 engine fuels of the Company meet ecological class Euro 3 quality standard.
Security & Compliance Standards Overview
No incidents recorded for SINOPEC in 2025.
No incidents recorded for RussNeft in 2025.
SINOPEC cyber incidents detection timeline including parent company and subsidiaries
RussNeft cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This vulnerability affects unknown code of the file /pet1/addcnp.php. This manipulation of the argument cnpname causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.
A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function image_check of the component httpd. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high complexity level is associated with this attack. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited.
A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/update_student.php. This manipulation of the argument stud_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.
A security flaw has been discovered in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/save_user.php. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.
A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument user_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
