Which companies in China have the worst cybersecurity scores?

Rankiteo identifies the most renowned companies in China that score lowest on the cyber resilience scale (0-1000). These organizations typically have unpatched vulnerabilities, misconfigured DNS/SSL, weak email security, or dark web exposure. The full ranking reveals the Bottom 25.

What cyber risks do low-scoring companies in China face?

Low-scoring companies in China face elevated risks including ransomware attacks, data breaches, supply-chain compromises, and regulatory penalties. Companies scoring below 600 (bands Caa, Ca, C) are statistically more likely to experience a cyber incident. Their weak posture often stems from exposed attack surfaces, outdated infrastructure, or inadequate security controls.

How can companies in China improve their cybersecurity score?

Companies can improve their Rankiteo score by: patching critical vulnerabilities, properly configuring DNS records and SSL certificates, implementing SPF/DKIM/DMARC email authentication, reducing their external attack surface, monitoring for leaked credentials on the dark web, and establishing an incident response plan. Scores typically improve within weeks of remediation.

What is the cyber resilience scoring scale?

Rankiteo's cyber resilience score ranges from 0 to 1000. Companies are classified into bands: Aaa (900-1000) best-in-class, Aa (850-899) excellent, A (800-849) very good, Baa (750-799) good, Ba (700-749) adequate, B (650-699) below average, Caa (600-649) poor, Ca (550-599) very poor, and C (0-549) critical risk. The methodology combines automated external assessment of attack surface, vulnerabilities, configuration, and threat intelligence.

Top 25 Worst Companies in China

Identify the lowest-scoring most renowned companies in China. Understand where critical cyber risk exposure exists in this country. 179 companies scored.

450

Companies in China

179

Scored

770.7

Avg Score

Cyber Incidents

Bottom 25

Shown

Add your company to the ranking

China Cybersecurity Risk Assessment - Lowest-Scoring Companies in 2026

Out of 450 companies in China monitored by Rankiteo, this page highlights the Bottom 25 organizations with the weakest cybersecurity posture. These rankings are based on our proprietary Cyber Resilience Score, which integrates time-decayed incident exposure, sector-sensitive impact analysis, and market-cap-aware baseline and dampening to produce a single, interpretable score between 100 and 1,000.

Companies at the bottom of this ranking carry the heaviest accumulated cyber incident burden - including recent or severe ransomware attacks, data breaches with significant financial losses or records exposed, and repeated disclosure events. Understanding where these risk concentrations exist is essential for supply chain risk management, regulatory compliance, and competitive benchmarking within China.

The current average score for the most notable companies in China is 770.7 out of 1,000. Companies shown below score significantly lower than this average, falling far behind a country that generally maintains reasonable security standards.

Risk Highlights

751

Lowest Score

770.7

Country Average

Scoring B or Below

Recorded Incidents

Score Distribution

Aaa

0 (0.0%)

1 (0.6%)

35 (19.6%)

Baa

124 (69.3%)

16 (8.9%)

1 (0.6%)

Caa

1 (0.6%)

0 (0.0%)

1 (0.6%)

#	Company	Label	Score	Band	Incidents
1	Weixin/WeChatwechat.com	Others	435	C	2
2	上海交通大学sjtu.edu.cn	Others	639	Caa	1
3	DeepSeek AIdeepseek.com	Others	659	B	4
4	H World Group Limitedhworld.com	Traveler Accommodation	705	Ba	1
5	Hikvisionhikvision.com	Computer Systems Design and Related Services	712	Ba	2
6	Ant Groupantgroup.com	Software Publishers	724	Ba	1
7	Tencenttencent.com	Software Publishers	729	Ba	3
8	Bambu Labbambulab.com	Computer and Electronic Product Manufacturing	735	Ba	1
9	Alibaba Cloud Globalalibabacloud.com	Computer Systems Design and Related Services	737	Ba	1
10	Johnson Controls Asia Pacificjohnsoncontrols.com	Industrial Machinery Manufacturing	741	Ba	0
11	Senieer International Groupsenieer.com	Machinery Manufacturing	742	Ba	0
12	SANY Marinesanyglobal.com	Machinery Manufacturing	744	Ba	0
13	ZOOMLION ACCESSzoomlion.com	Machinery Manufacturing	744	Ba	0
14	Gresgying \| EV Charginggresgying.global	Electrical Equipment, Appliance, and Component Manufacturing	746	Ba	0
15	Sany Renewable Energy Co., Ltdsanyre.com.cn	Engines and Power Transmission Equipment Manufacturing	747	Ba	0
16	SHINING 3Dshining3d.com	Industrial Machinery Manufacturing	747	Ba	0
17	CRRC Corporation Ltd.crrcgc.cc	Railroad Rolling Stock Manufacturing	749	Ba	1
18	Huawei Service & Softwarehuawei.com	Telecommunications	749	Ba	0
19	捷豹路虎中国 Jaguar Land Rover Chinajaguarlandrover.com	Motor Vehicle Manufacturing	749	Ba	0
20	Unitree Roboticsunitree.com	Others	750	Baa	1
21	DiDididiglobal.com	Software Publishers	751	Baa	1
22	Huawei Cloud Corehuawei.com	Others	751	Baa	0
23	Huawei Enterpriselnkd.in	Others	751	Baa	0
24	Labbrand Grouplabbrandgroup.com	Management, Scientific, and Technical Consulting Services	751	Baa	0
25	Mailman, an IMG Companymailmangroup.com	Marketing Consulting Services	751	Baa	0

How Cyber Risk Scores Are Calculated

Rankiteo's Cyber Resilience Score produces a single value between 100 and 1,000 for each organization, where higher scores indicate lower estimated cyber risk. The framework integrates three principal components that together balance evidence, context, and comparability across industries and company sizes. Learn more in our AI Cyber Score methodology.

Understanding the Risk Bands

Each score maps to a letter-grade band. Companies appearing in this lowest-scoring ranking typically fall in the bottom bands:

Aaa (900-1,000): Exceptional cyber resilience - very few companies in a worst list reach this level.
Aa (800-899): Very strong security posture with minimal weaknesses.
A (700-799): Strong practices with some areas for improvement.
Baa (600-699): Adequate protection but notable security configuration gaps exist.
Ba (500-599): Below average - multiple risk areas require attention.
B (400-499): Weak security with significant exposure across categories.
Caa (300-399): Very weak with a high probability of exploitable vulnerabilities.
Ca (200-299): Critically poor with severe, widespread security gaps.
C (0-199): Extreme risk - immediate remediation is needed across all dimensions.

Why Monitoring Low-Scoring Companies in China Matters

Cybersecurity risk doesn't exist in isolation. If your organization works with, purchases from, or shares data with companies in China, their security weaknesses become your risk. Supply chain attacks - where adversaries compromise a less-secure vendor to reach a larger target - have become one of the most common and damaging attack vectors in recent years.

Rankiteo continuously monitors 450 companies in China, keeping these rankings up to date so you always have an accurate, current picture of the country's risk landscape.

Explore More Rankings

Compare cybersecurity performance across countries and perspectives. Use these resources to benchmark risk and identify improvement opportunities.

🏆Best Companies in ChinaSee the highest-scoring companies in this country 🌐Worst Companies - All CountriesCompare highest-risk companies across every country ⚠Worst Companies - All IndustriesIdentify the highest-risk companies across sectors