Rankiteo Logo
Rankiteo
See Your Ranking
Loading...

The Rankiteo MCP server is now available.

Discover MCP
!

Top 25 Worst Companies in China

Identify the lowest-scoring most renowned companies in China. Understand where critical cyber risk exposure exists in this country. 78 companies scored.

445
Companies in China
78
Scored
767.6
Avg Score
35
Cyber Incidents
Bottom 25
Shown
Add your company to the ranking

China Cybersecurity Risk Assessment - Lowest-Scoring Companies in 2026

Out of 445 companies in China monitored by Rankiteo, this page highlights the Bottom 25 organizations with the weakest cybersecurity posture. These rankings are based on our proprietary Cyber Resilience Score, which integrates time-decayed incident exposure, sector-sensitive impact analysis, and market-cap-aware baseline and dampening to produce a single, interpretable score between 100 and 1,000.

Companies at the bottom of this ranking carry the heaviest accumulated cyber incident burden - including recent or severe ransomware attacks, data breaches with significant financial losses or records exposed, and repeated disclosure events. Understanding where these risk concentrations exist is essential for supply chain risk management, regulatory compliance, and competitive benchmarking within China.

The current average score for the most notable companies in China is 767.6 out of 1,000. Companies shown below score significantly lower than this average, falling far behind a country that generally maintains reasonable security standards.

Risk Highlights

759
Lowest Score
767.6
Country Average
4%
Scoring B or Below
35
Recorded Incidents

Score Distribution

Aaa
0 (0.0%)
Aa
1 (1.3%)
A
17 (21.8%)
Baa
53 (67.9%)
Ba
4 (5.1%)
B
0 (0.0%)
Caa
1 (1.3%)
Ca
0 (0.0%)
C
2 (2.6%)
#CompanyLabelScoreBandIncidentsScore Bar
1
Weixin/WeChatwechat.com
Others435C2
2
DeepSeek AIdeepseek.com
Others511C4
3
上海交通大学sjtu.edu.cn
Others639Caa1
4
H World Group Limitedhworld.com
Traveler Accommodation705Ba1
5
Tencenttencent.com
Software Publishers728Ba3
6
Alibaba Cloud Globalalibabacloud.com
Computer Systems Design and Related Services737Ba1
7
CRRC Corporation Ltd.crrcgc.cc
Railroad Rolling Stock Manufacturing749Ba1
8
Unitree Roboticsunitree.com
Others750Baa1
9
Huawei Enterpriselnkd.in
Others751Baa0
10
Johnson Controls Asia Pacificjohnsoncontrols.com
Industrial Machinery Manufacturing751Baa0
11
Mailman, an IMG Companymailmangroup.com
Marketing Consulting Services751Baa0
12
China Energy Engineering Group Co. Ltd.ceec.net.cn
Oil and Gas Extraction752Baa0
13
OnePlusoneplus.com
Computer and Electronic Product Manufacturing752Baa2
14
Mammotion Techmammotion.com
Computer and Electronic Product Manufacturing753Baa0
15
Pharmaron Biologics and Cell & Gene Therapypharmaron.com
Pharmaceutical and Medicine Manufacturing753Baa0
16
Swissnex in Chinaswissnex.org
Others753Baa0
17
Eli Lilly Chinalillychina.com
-755Baa0
18
King & Wood Mallesonskwm.com
Legal Services755Baa0
19
Momentamomenta.ai
Software Publishers756Baa0
20
Wison Engineering Ltd.wison-engineering.com
Engineering Services757Baa0
21
PwC Acceleration Center Shanghaipwc.com
-758Baa0
22
Tencent Cloudtencentcloud.com
Others758Baa1
23
Zhong Lun Law Firmzhonglun.com
Legal Services758Baa0
24
Audi Chinaaudichina.cn
-759Baa0
25
China.org.cnchina.org.cn
Broadcasting (except Internet)759Baa0

How Cyber Risk Scores Are Calculated

Rankiteo's Cyber Resilience Score produces a single value between 100 and 1,000 for each organization, where higher scores indicate lower estimated cyber risk. The framework integrates three principal components that together balance evidence, context, and comparability across industries and company sizes. Learn more in our AI Cyber Score methodology.

Understanding the Risk Bands

Each score maps to a letter-grade band. Companies appearing in this lowest-scoring ranking typically fall in the bottom bands:

  • Aaa (900-1,000): Exceptional cyber resilience - very few companies in a worst list reach this level.
  • Aa (800-899): Very strong security posture with minimal weaknesses.
  • A (700-799): Strong practices with some areas for improvement.
  • Baa (600-699): Adequate protection but notable security configuration gaps exist.
  • Ba (500-599): Below average - multiple risk areas require attention.
  • B (400-499): Weak security with significant exposure across categories.
  • Caa (300-399): Very weak with a high probability of exploitable vulnerabilities.
  • Ca (200-299): Critically poor with severe, widespread security gaps.
  • C (0-199): Extreme risk - immediate remediation is needed across all dimensions.

Why Monitoring Low-Scoring Companies in China Matters

Cybersecurity risk doesn't exist in isolation. If your organization works with, purchases from, or shares data with companies in China, their security weaknesses become your risk. Supply chain attacks - where adversaries compromise a less-secure vendor to reach a larger target - have become one of the most common and damaging attack vectors in recent years.

Rankiteo continuously monitors 445 companies in China, keeping these rankings up to date so you always have an accurate, current picture of the country's risk landscape.