UORC A.I CyberSecurity Scoring
05/06/2026
Access Monitoring Plan
Access Monitoring Plan
U.S. Oil & Refining Co. has 58.33% fewer incidents than the average of same-industry companies with at least one recorded incident.
U.S. Oil & Refining Co. has 4.76% fewer incidents than the average of all companies with at least one recorded incident.
U.S. Oil & Refining Co. reported 1 incidents this year: 1 cyber attacks, 0 ransomware, 0 vulnerabilities, 0 data breaches, compared to industry peers with at least 1 incident.
The need for energy is universal. That's why ExxonMobil scientists and engineers are pioneering new research and pursuing new technologies to reduce emissions while creating more efficient fuels. We're committed to responsibly meeting the world's energy needs. We aim to achieve #netzero emissions from our operated assets by 2050 (for Scope 1 and 2 greenhouse gas emissions) and are taking a comprehensive approach to create emission-reduction roadmaps for major operated assets. Find us also on: YouTube.com/ExxonMobil Find our latest Privacy Policy at https://corporate.exxonmobil.com/Global-legal-pages/privacy-policy See our terms and conditions at https://corporate.exxonmobil.com/global-legal-pages/terms-and-conditions Find resources on our GHG emission reduction efforts here: https://corporate.exxonmobil.com/resources
Transocean is a leading international provider of offshore contract drilling services for oil and gas wells. The company specializes in technically demanding sectors of the global offshore drilling business, with a particular focus on ultra-deepwater and harsh environment drilling services and operates the highest specification floating offshore drilling fleet in the world. Transocean owns or has partial ownership interests in and operates a fleet of 27 mobile offshore drilling units, consisting of 20 ultra-deepwater floaters and seven harsh environment floaters.
Our motto “Growth is Life” aptly captures the ever-evolving spirit of Reliance. Our activities span hydrocarbon exploration and production, petroleum refining and marketing, petrochemicals, retail, and telecommunications. In each of these areas, we are committed to innovation-led, exponential growth. Our vision has pushed us to achieve global leadership in many of our businesses – including our position as the largest polyester yarn and fiber producer in the world. Reliance Industries Limited is a Fortune 500 company and the largest private sector corporation in India. As Reliance sets sights on even more ambitious goals, we remain inspired and guided by the story and philosophy of our founder chairman Dhirubhai Ambani. Hailing from modest means, he followed his dream to create India's largest company. Reliance as an organization has adopted this ethos of converting adversity into opportunity and making the impossible possible by challenging conventional wisdom. Our ultimate aim has always been – and will always be – to touch the lives of people in a positive way
McDermott is a premier provider of engineering and construction solutions to the energy industry. Our customers trust our technology-driven approach—engineered to responsibly harness and transform global energy resources into the products the world needs for now and what’s next. From concept to commissioning, we are creating and delivering the building blocks of the energy transition. Our innovative expertise and capabilities advance the next generation of global energy infrastructure—empowering a brighter, more sustainable future for us all. Operating in over 54 countries, our locally focused and globally integrated resources include more than 30,000 employees, a diversified fleet of specialty marine construction vessels and fabrication facilities around the world. To learn more, visit www.mcdermott.com.
Aker Solutions delivers integrated solutions, products and services to the global energy industry. We enable low-carbon oil and gas production and develop renewable solutions to meet future energy needs. By combining innovative digital solutions and predictable project execution we accelerate the transition to sustainable energy production. Go to www.akersolutions.com for more information on our business, people and values.
Eni is an integrated energy company, founded in 1953, with 31.376 employees in 69 countries around the world, including Algeria, Angola, Mozambique, Mexico, Indonesia and Italy. In 2021, the company launched a new strategy that will enable it to provide a variety of fully decarbonized products, combining environmental and financial sustainability. The recent merger of the renewable and retail businesses in Plenitude (formerly Eni gas e luce), the development of bio-refineries and biomethane production, and the sale of low-carbon energy carriers and mobility services at service stations are among the main levers for taking the path towards decarbonization. Eni aspires to contribute to the achievement of the Sustainable Development Goals (SDGs) of the United Nations 2030 Agenda, supporting a just energy transition that meets the challenge of climate change with concrete and economically sustainable solutions by promoting efficient and sustainable access to energy resources, for all. * data updated to 2022
Somos el mayor productor de Oil & Gas de la Argentina, con sólidos resultados y capacidad para llevar adelante los proyectos que convertirán al país en un exportador de energía a nivel mundial. Nuestro objetivo es convertirnos en una empresa no convencional de clase mundial y que Argentina pueda exportar USD 30.000 millones en petróleo y gas para el 2031. Hoy, estamos al frente de los proyectos industriales más ambiciosos del país. Lideramos el Vaca Muerta Oil Sur (VMOS), que potenciará la producción de crudo, y el Argentina LNG, un proyecto de escala global que permitirá exportar gas al mundo. Buscamos constantemente innovación y nuevas tecnologías. Con nuestros Real Time Intelligence Centers, tomamos decisiones más eficientes basadas en datos en tiempo real, aumentando la rentabilidad. Trabajamos por los combustibles del futuro y de calidad internacional. Si te digo un compañía de clase mundial con el corazón que no tiene ninguna otra, decís YPF. Una empresa argentina. #YPFEnergíaArgentina #YPFClaseMundial
Hindustan Petroleum Corporation Limited (HPCL) is a Maharatna Central Public Sector Enterprise (CPSE) and a S&P Global Platts Top 250 Global Energy Company. HPCL has a strong presence in downstream hydrocarbon sector of the country with a sizable share in petroleum product marketing and also has business footprints across other energy verticals & various overseas geographies.
Fortune Global 500 Company, Bharat Petroleum is the second largest Indian Oil Marketing Company and one of the premier integrated energy companies in India, engaged in refining of crude oil and marketing of petroleum products, with a significant presence in the upstream and downstream sectors of the oil and gas industry. The company attained the coveted Maharatna status, joining the elite club of companies having greater operational & financial autonomy. Bharat Petroleum’s Refineries at Mumbai & Kochi and Bina at Madhya Pradesh have a combined refining capacity of around 35.3 MMTPA. Its marketing infrastructure includes a network of installations, depots, energy stations, aviation service stations and LPG distributors. Its distribution network comprises over 20,000 Energy Stations, over 6,200 LPG distributorships, 733 Lubes distributorships, and 123 POL storage locations, 54 LPG Bottling Plants, 60 Aviation Service Stations, 4 Lube blending plants and 4 cross-country pipelines. Bharat Petroleum is integrating its strategy, investments, environmental and social ambitions to move towards a sustainable planet. The company has chalked out the plan to offer electric vehicle charging stations at around 7000 energy stations over next 5 years. With a focus on sustainable solutions, the company is developing a vibrant ecosystem and a road-map to become a Net Zero Energy Company by 2040, in Scope 1 and Scope 2 emissions. Bharat Petroleum has been partnering communities by supporting innumerable initiatives connected primarily in the areas of education, water conservation, skill development, health, community development, capacity building and employee volunteering. With ‘Energising Lives’ as its core purpose, Bharat Petroleum’s vision is to be the most admired global energy company leveraging talent, innovation & technology.
Latest updates, reports, and threat intel affecting the global network.
The US has seized a tanker near Trinidad as part of efforts to control Venezuelan oil exports. Follow the latest.
See how Trump's capture of Maduro and control of Venezuela's oil sales could affect China, Cuba and the United States.
The U.S. Coast Guard seized another oil tanker in the Caribbean on Friday, marking the fifth vessel targeted by the Trump administration in...
The Trump administration is unlikely to provide financial support to help US oil companies revitalize Venezuela's oil sector,...
The U.S. Coast Guard boarded a fifth oil tanker, the Olina, as part of an effort to enforce a blockade on sanctioned vessels linked to...
U.S. oil executives being summoned to the White House to discuss potential investment plans in Venezuela will be carefully weighing the...
Venezuela has reduced oil production after a US export embargo paused shipments, leaving the country with limited storage capacity and...
President Trump is meeting with big oil industry executives Friday afternoon as he pushes U.S. oil companies to invest in Venezuela.
U.S. forces boarded another oil tanker in the Caribbean Sea, according to the U.S. military.
HedgeDoc is an open source, real-time collaborative markdown notes application. Prior to 1.11.0, the GitHub Gist export flow created an OAuth2 state value but only checked that it was present rather than validating it against the value expected for the user's session. Because the state was not properly validated, an attacker could forge a callback URL containing their own valid GitHub OAuth code. When processing the callback, HedgeDoc used the victim's logged-in session to select which note to export, but the attacker's authorization code to determine which GitHub account received it. As a result, a logged-in victim who clicked a crafted link could export their own private, protected, or limited note directly into a Gist controlled by the attacker. This issue has been fixed in version 1.11.0.
HedgeDoc is an open source, real-time, collaborative, markdown notes application. Prior to version 1.11.0, HedgeDoc was vulnerable to a YAML alias bomb due to unsafe processing of the note frontmatter. HedgeDoc parsed frontmatter with js-yaml.load (js-yaml v3) via @hedgedoc/meta-marked, which resolved YAML anchor aliases. A compact malicious payload could therefore expand into a huge object structure, consuming excessive CPU. This expansion ran on every request to the publish view (/s/<shortid>) and, when placed under the opengraph key, the editor view (/<noteId>). A ten-level alias bomb could block the single Node.js event loop for roughly 235 seconds per request, causing concurrent requests to hang or drop and rendering the instance unavailable (DoS). Because the note was stored in the database, the impact survived process restarts until the note was removed. toobusy-js did not reliably mitigate the worst cases, as the event loop was saturated before the middleware could respond. This issue was fixed in version 1.11.0.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hv_exts. When building the extension hash (via extensions(), extensions_by_long_name(), extensions_by_oid(), or has_extension_oid()), the code passes OBJ_obj2txt()'s return value as the hash-key length; because that value is the OID's full text length rather than the bytes written to the fixed-size buffer (129 bytes), an OID whose text is longer than the 129-byte buffer causes a read past the allocation, exposing adjacent heap memory as the returned hash key. extensions_by_name() uses the static shortname path and is not affected.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow denial of service via NULL pointer dereference. X509V3_EXT_d2i(ext) returns NULL when an extension's DER value fails to parse. basicC, ia5string, and auth_att dereference its result without a NULL check. keyid_data also dereferences akid->keyid, which is NULL for an empty AKI SEQUENCE (DER 30 00) even when the parse succeeds. A caller invoking an affected helper on an extension from an untrusted certificate triggers a SIGSEGV that crashes the Perl process.
Cockpit CMS contains a path traversal vulnerability in the Bucket file storage API (/system/buckets/api). The api() method in modules/System/Controller/Buckets.php sanitizes the bucket name with preg_replace('/[^a-zA-Z0-9-_\\.]/','', $bucket), which permits '..' and '../' sequences. The sanitized value is interpolated into a Flysystem path as uploads://buckets/{bucket}. Flysystem's WhitespacePathNormalizer resolves 'buckets/..' to the empty string (the uploads storage root) without raising PathTraversalDetected because the '..' has a preceding component to consume. An authenticated low-privileged user can send a crafted request with a '../' bucket name to list, upload, and delete files across all buckets, including those belonging to other users or roles
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.