None
Established in 1964, BHEL is one of India's largest engineering and manufacturing enterprises in the energy and infrastructure sectors, and a leading power equipment manufacturer globally. BHEL serves the core sectors of the economy and provides a comprehensive portfolio of products, systems and services to customers in power, transmission, transportation, renewables, water, defence & aerospace, oil & gas, and industry. BHEL has created value for its stakeholders due to the scale and depth of its operations, rich experience, competent manpower, innovative ecosystem, diverse product-mix and focus on sustainable business solutions. BHEL’s greatest asset- its highly skilled and committed workforce of more than 34,000 employees is the cornerstone of its success. BHEL’s commitment to nation building reflects in many ways- in its contribution to the country’s installed power generation capacity; bringing the latest state-of-the-art technology to the country; consistent highest expenditure of more than 2.5% of its turnover on R&D and innovation in the Indian engineering segment; pan-India presence; establishment of world-class assets with presence in over 84 country across the globe, and contribution to the society at large through initiatives in skilling youth, health & hygiene, education, cleanliness and environment protection, to name a few. With a widespread network of 16 manufacturing facilities, 2 repair units, 4 regional offices, 8 service centres, 1 subsidiary, 3 active joint ventures, 15 regional marketing centres, 3 overseas offices and current project execution at more than 150 project sites across India and abroad, BHEL manufactures a wide range of high quality & reliable products adhering to national & international standards. BHEL has installed over 1000 utility sets worldwide with its installed base of supplied power generating equipment exceeding 185 GW. BHEL has also commissioned 200+ electric substations & 5 major HVDC projects in the country.
Security & Compliance Standards Overview
No incidents recorded for Taiwan Semiconductor Manufacturing Company Limited in 2025.
No incidents recorded for Bharat Heavy Electricals Limited in 2025.
Taiwan Semiconductor Manufacturing Company Limited cyber incidents detection timeline including parent company and subsidiaries
Bharat Heavy Electricals Limited cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
A vulnerability has been found in TykoDev cherry-studio-TykoFork 0.1. This issue affects the function redirectToAuthorization of the file /.well-known/oauth-authorization-server of the component OAuth Server Discovery. Such manipulation of the argument authorizationUrl leads to os command injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.
A flaw has been found in code-projects Question Paper Generator up to 1.0. This vulnerability affects unknown code of the file /selectquestionuser.php. This manipulation of the argument subid causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used.
A vulnerability was found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected by this vulnerability is an unknown functionality of the file /dishsub.php. The manipulation of the argument item.name results in cross site scripting. It is possible to launch the attack remotely. The exploit has been made public and could be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The vendor was contacted early about this disclosure but did not respond in any way.
A vulnerability has been found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected is an unknown function of the file /usersub.php of the component Request Pending Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The vendor was contacted early about this disclosure but did not respond in any way.
A flaw has been found in Verysync 微力同步 up to 2.21.3. This impacts an unknown function of the file /rest/f/api/resources/f96956469e7be39d/tmp/text.txt?override=false of the component Web Administration Module. Executing manipulation can lead to unrestricted upload. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
