Enel Group
Company Details
Linkedin ID:
enelgroup
Website:
Employees number:
30,413
Number of followers:
808,530
NAICS:
22
Industry Type:
Homepage:
enel.com
IP Addresses:
76
Company ID:
ENE_2802767
Scan Status:
Completed
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
Enel Group Vendor Cyber Rating & Cyber Score
enel.comWe are a multinational company changing the face of energy, one of the world’s leading integrated utilities. As the largest private player in producing clean energy with renewable sources we have more than 92 GW of total capacity, including around 67 GW of renewables. Distributing electricity through a network of 1.9 million kilometers to 69 million end users, being the first private network operator globally, and proudly bringing energy to approximately 54 million homes and businesses. People are the heart of our energy: our Group is made up of more than 60,000 people operating in 28 countries and our work is based on our values of Trust, Innovation, Proactivity, Flexibility and Respect. Diversity and inclusion play a key role for us, leading to our being recognized in all three of the most prestigious indices and rankings that assess corporate performance on gender diversity at the workplace and beyond: the Refinitiv Diversity Inclusion Index, the Bloomberg Gender Equality Index, and the Equileap Gender Equality Global Report & Ranking. Let’s shape the energy of the future together.
Enel Group A.I CyberSecurity Scoring
Enel Group Risk Score (AI oriented)Between 800 and 849
Enel Group
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Enel Group Global Score (TPRM)XXXX
Enel Group
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Enel Group Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Endesa: Spanish energy giant Endesa discloses data breach affecting customers
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: Endesa and Energía XXI Report Data Breach Affecting Millions of Customers Spanish energy provider Endesa and its subsidiary Energía XXI have disclosed a data breach involving unauthorized access to customer contract information. The incident, detected on an unspecified date, exposed personal and financial details of affected clients, though no account passwords were compromised. Scope and Impact Endesa, Spain’s largest electric utility company under the Enel Group, serves over 22 million customers across Spain and Portugal. The breach targeted its commercial platform, with hackers accessing: - Basic identification details (names, addresses) - Contact information (phone numbers, emails) - National identity numbers (DNI) - Contract and payment details, including IBANs While the company states there is no current evidence of fraudulent data misuse, it acknowledges potential risks, including identity theft and phishing attacks. Endesa has notified Spain’s Data Protection Agency and relevant authorities, implementing heightened monitoring and blocking compromised internal accounts. Ongoing Investigation and Threat Actor Claims The breach’s full extent remains under investigation, with Endesa pledging to notify affected customers as new details emerge. Meanwhile, threat actors have advertised a purported 1TB database of Endesa customer records allegedly 20 million entries for sale to a single buyer. The samples align with the data types Endesa confirmed were accessed, though the company has not verified the hackers’ claims. Energía XXI has assured customers that operations and services remain unaffected, with no disruption to energy distribution. The company continues to analyze logs and reinforce security measures.
Enel Group Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Enel Group
Incidents vs Utilities Industry Average (This Year)
No incidents recorded for Enel Group in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Enel Group in 2026.
Incident Types Enel Group vs Utilities Industry Avg (This Year)
No incidents recorded for Enel Group in 2026.
Incident History — Enel Group (X = Date, Y = Severity)
Enel Group cyber incidents detection timeline including parent company and subsidiaries
Enel Group Company Subsidiaries
We are a multinational company changing the face of energy, one of the world’s leading integrated utilities. As the largest private player in producing clean energy with renewable sources we have more than 92 GW of total capacity, including around 67 GW of renewables. Distributing electricity through a network of 1.9 million kilometers to 69 million end users, being the first private network operator globally, and proudly bringing energy to approximately 54 million homes and businesses. People are the heart of our energy: our Group is made up of more than 60,000 people operating in 28 countries and our work is based on our values of Trust, Innovation, Proactivity, Flexibility and Respect. Diversity and inclusion play a key role for us, leading to our being recognized in all three of the most prestigious indices and rankings that assess corporate performance on gender diversity at the workplace and beyond: the Refinitiv Diversity Inclusion Index, the Bloomberg Gender Equality Index, and the Equileap Gender Equality Global Report & Ranking. Let’s shape the energy of the future together.
Loading...
Enel Group Similar Companies
Neoenergia
Somos uma companhia de capital aberto com ações (NEOE3) negociadas na Bolsa de Valores de São Paulo. Parte do grupo espanhol Iberdrola, atuamos no Brasil desde 1997, e atualmente, somos uma das líderes do setor elétrico do país. Estamos presentes em 18 estados e no Distrito Federal, com negócios em
American Electric Power
Our team at American Electric Power is committed to improving our customers' lives with reliable, affordable power. We are investing $54 billion from 2025 through 2029 to enhance service for customers and support the growing energy needs of our communities. Our nearly 16,000 employees operate and ma
Correos
Somos la empresa líder en comunicaciones físicas, digitales y de paquetería. Nuestra misión es prestar un servicio integral de calidad, ofreciendo soluciones y servicios en toda la cadena de valor del ecommerce con el objetivo de facilitar la vida a nuestros clientes. Distribuimos más de 5.100 millo
Constellation
Constellation Energy Corporation (Nasdaq: CEG), a Fortune 200 company headquartered in Baltimore, is the nation’s largest producer of reliable, emissions-free energy and a leading energy supplier to businesses, homes and public sector customers nationwide, including three-fourths of Fortune 100 comp
Pacific Gas and Electric Company
Pacific Gas and Electric Company, incorporated in California in 1905, is one of the largest combination natural gas and electric utilities in the United States. Based in San Francisco, the company is a subsidiary of PG&E Corporation. There are approximately 20,000 employees who carry out Pacific
Framatome
Framatome is an international leader in nuclear energy recognized for its innovative, digital and value added solutions for the global nuclear fleet. With worldwide expertise and a proven track record for reliability and performance, the company designs, services and installs components, fuel, and i
Dominion Energy (NYSE: D), headquartered in Richmond, Va., provides regulated electricity service to 3.6 million homes and businesses in Virginia, North Carolina, and South Carolina, and regulated natural gas service to 500,000 customers in South Carolina. The company is one of the nation’s leading
Hitachi Energy is a global technology leader in electrification, powering a sustainable energy future with innovative power grid technologies with digital at the core. Over three billion people depend on our technologies to power their daily lives. With over a century in pioneering mission-critical
NextEra Energy, Inc.
NextEra Energy, Inc. (NYSE: NEE) is one of the largest electric power and energy infrastructure companies in North America and is a leading provider of electricity to American homes and businesses. Headquartered in Juno Beach, Florida, NextEra Energy is a Fortune 200 company that owns Florida Power
.png)
Enel Group CyberSecurity News
January 15, 2026 08:00 AM
News - Endesa Reports Cyber Security Incident Affecting Sensitive Customer Information
Spanish energy company Endesa has disclosed a data security incident in which threat actors infiltrated its internal network and exfiltrated...
January 14, 2026 08:00 AM
Endesa probes breach after hackers claim huge data haul
Spanish energy giant Endesa is warning customers about a data breach after a cybercrim claimed to have walked off with a vast cache of...
January 13, 2026 08:00 AM
Spanish Energy Company Endesa Hacked
Spanish energy company Endesa has notified customers that hackers stole their personal information, including payment information.
January 13, 2026 07:03 AM
Endesa Data Breach Exposes Customer Contract Information
The Endesa data breach specifically affects customers of Energía XXI, which operates under Spain's regulated energy market.
January 05, 2026 08:00 AM
Here's Why Enel SpA (ENLAY) is a Great Momentum Stock to Buy
Does Enel SpA (ENLAY) have what it takes to be a top stock pick for momentum investors? Let's find out.
November 21, 2025 03:15 AM
Artificial intelligence and the benefits to energy
Discover the concept of artificial intelligence and its benefits in the electric industry and in the plant monitoring and maintenance activities.
November 17, 2025 08:00 AM
Enel: Guidance Tightened, Buyback Underway, Third Growth Engine Emerging (OTCMKTS:ENLAY)
Enel's data centers and 6.7GW of awarded BESS could add a third earnings engine alongside networks and renewables. The group is executing up...
May 14, 2025 07:00 AM
Enel, Leonardo, Ansaldo Energia team up on nuclear power research
Italian power group Enel , defence company Leonardo and Ansaldo Energia have set up a company to study new-generation nuclear technologies,...
April 07, 2025 05:59 PM
Sustainability as a Business-Model Transformation
Many global companies have made public commitments to sustainability targets. Fulfilling these commitments will require firms to transform their business...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Enel Group CyberSecurity History Information
Official Website of Enel Group
The official website of Enel Group is http://www.enel.com.
Enel Group’s AI-Generated Cybersecurity Score
According to Rankiteo, Enel Group’s AI-generated cybersecurity score is 800, reflecting their Good security posture.
How many security badges does Enel Group’ have ?
According to Rankiteo, Enel Group currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Enel Group been affected by any supply chain cyber incidents ?
According to Rankiteo, Enel Group has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Enel Group have SOC 2 Type 1 certification ?
According to Rankiteo, Enel Group is not certified under SOC 2 Type 1.
Does Enel Group have SOC 2 Type 2 certification ?
According to Rankiteo, Enel Group does not hold a SOC 2 Type 2 certification.
Does Enel Group comply with GDPR ?
According to Rankiteo, Enel Group is not listed as GDPR compliant.
Does Enel Group have PCI DSS certification ?
According to Rankiteo, Enel Group does not currently maintain PCI DSS compliance.
Does Enel Group comply with HIPAA ?
According to Rankiteo, Enel Group is not compliant with HIPAA regulations.
Does Enel Group have ISO 27001 certification ?
According to Rankiteo,Enel Group is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Enel Group
Enel Group operates primarily in the Utilities industry.
Number of Employees at Enel Group
Enel Group employs approximately 30,413 people worldwide.
Subsidiaries Owned by Enel Group
Enel Group presently has no subsidiaries across any sectors.
Enel Group’s LinkedIn Followers
Enel Group’s official LinkedIn profile has approximately 808,530 followers.
NAICS Classification of Enel Group
Enel Group is classified under the NAICS code 22, which corresponds to Utilities.
Enel Group’s Presence on Crunchbase
Yes, Enel Group has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/enel.
Enel Group’s Presence on LinkedIn
Yes, Enel Group maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/enelgroup.
Cybersecurity Incidents Involving Enel Group
As of April 02, 2026, Rankiteo reports that Enel Group has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Enel Group has an estimated 4,343 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Enel Group ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
How does Enel Group detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an containment measures with blocked access to compromised internal accounts, dumped log records for analysis, and remediation measures with notifying affected customers, elevated monitoring for suspicious activity, and communication strategy with public disclosure, direct customer notifications, and .
Incident Details
Can you provide details on each incident ?
Title: Unauthorized Access to Endesa and Energía XXI Customer Data
Description: Spanish energy provider Endesa and its Energía XXI operator notified customers that hackers accessed the company's systems and accessed contract-related information, including personal details. The investigation indicates unauthorized access to basic identification details, contact information, national identity numbers (DNI), contract details, and payment details (including IBANs).
Type: Data Breach
Motivation: Financial Gain (Data for Sale)
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach END1768237930
Data Compromised: Basic identification details, contact information, national identity numbers (DNI), contract details, payment details (IBANs)
Systems Affected: Commercial platform
Operational Impact: No impact on operations or services
Identity Theft Risk: High (identity impersonation, phishing attacks)
Payment Information Risk: High (IBANs exposed)
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Basic Identification Details, Contact Information, National Identity Numbers (Dni), Contract Details, Payment Details (Ibans) and .
Which entities were affected by each incident ?
Incident : Data Breach END1768237930
Entity Name: Endesa
Entity Type: Energy Utility Company
Industry: Energy
Location: Spain, Portugal
Size: 22 million clients
Customers Affected: 10 million+ (Energía XXI customers)
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach END1768237930
Incident Response Plan Activated: True
Containment Measures: Blocked access to compromised internal accounts, dumped log records for analysis
Remediation Measures: Notifying affected customers, elevated monitoring for suspicious activity
Communication Strategy: Public disclosure, direct customer notifications
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach END1768237930
Type of Data Compromised: Basic identification details, Contact information, National identity numbers (dni), Contract details, Payment details (ibans)
Number of Records Exposed: 20 million (alleged)
Sensitivity of Data: High (PII, financial data)
File Types Exposed: SQL databases
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Notifying affected customers, elevated monitoring for suspicious activity.
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by blocked access to compromised internal accounts and dumped log records for analysis.
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Data Breach END1768237930
Regulatory Notifications: Spanish Data Protection AgencyPertinent authorities
Lessons Learned and Recommendations
What recommendations were made to prevent future incidents ?
Incident : Data Breach END1768237930
Recommendations: Customers urged to be vigilant for identity impersonation, data theft, and phishing attacks; report suspicious activity.
What recommendations has the company implemented to improve cybersecurity ?
Implemented Recommendations: The company has implemented the following recommendations to improve cybersecurity: Customers urged to be vigilant for identity impersonation, data theft and and phishing attacks; report suspicious activity..
References
Where can I find more information about each incident ?
Incident : Data Breach END1768237930
Source: BleepingComputer
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: BleepingComputer.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Data Breach END1768237930
Investigation Status: Ongoing
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Public disclosure and direct customer notifications.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : Data Breach END1768237930
Customer Advisories: Customers notified to monitor for fraudulent activity and report suspicious incidents.
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: was Customers notified to monitor for fraudulent activity and report suspicious incidents..
Post-Incident Analysis
Additional Questions
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Basic identification details, contact information, national identity numbers (DNI), contract details and payment details (IBANs).
Response to the Incidents
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident were Blocked access to compromised internal accounts and dumped log records for analysis.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Basic identification details, contact information, national identity numbers (DNI), contract details and payment details (IBANs).
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 20.0M.
Lessons Learned and Recommendations
What was the most significant recommendation implemented to improve cybersecurity ?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Customers urged to be vigilant for identity impersonation, data theft and and phishing attacks; report suspicious activity..
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is BleepingComputer.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
Stakeholder and Customer Advisories
What was the most recent customer advisory issued ?
Most Recent Customer Advisory: The most recent customer advisory issued was an Customers notified to monitor for fraudulent activity and report suspicious incidents.
.png)
Latest Global CVEs (Not Company-Specific)
Description
A security flaw has been discovered in itsourcecode Payroll Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /manage_user.php of the component Parameter Handler. Performing a manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for attacks.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was identified in Axiomatic Bento4 up to 1.6.0-641. Affected is the function AP4_BitReader::SkipBits of the file Ap4Dac4Atom.cpp of the component DSI v1 Parser. Such manipulation of the argument n_presentations leads to heap-based buffer overflow. The attack needs to be performed locally. The exploit is publicly available and might be used. The project was informed of the problem early through an issue report but has not responded yet.
Risk Information
cvss2
Base: 4.3
Severity: LOW
AV:L/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was determined in Axiomatic Bento4 up to 1.6.0-641. This impacts the function AP4_BitReader::ReadCache of the file Ap4Dac4Atom.cpp of the component MP4 File Parser. This manipulation causes heap-based buffer overflow. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.
Risk Information
cvss2
Base: 4.3
Severity: LOW
AV:L/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a heap-buffer-overflow (HBO) in icAnsiToUtf8() in the XML conversion path. The issue is triggered by a crafted ICC profile which causes icAnsiToUtf8(std::string&, char const*) to treat an input buffer as a C-string and call operations that rely on strlen()/null-termination. AddressSanitizer reports an out-of-bounds READ of size 115 past a 114-byte heap allocation, with the failure observed while running the iccToXml tool. This issue has been patched in version 2.3.1.6.
Risk Information
cvss3
Base: 6.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a stack-buffer-overflow (SBO) in CIccTagFixedNum<>::GetValues() and a related bug chain. The primary crash is an AddressSanitizer-reported WRITE of size 4 that overflows a 4-byte stack variable (rv) via the call chain CIccTagFixedNum::GetValues() -> CIccTagStruct::GetElemNumberValue(). This issue has been patched in version 2.3.1.6.
Risk Information
cvss3
Base: 6.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
- https://github.com/InternationalColorConsortium/iccDEV/issues/696
- https://github.com/InternationalColorConsortium/iccDEV/issues/697
- https://github.com/InternationalColorConsortium/iccDEV/issues/698
- https://github.com/InternationalColorConsortium/iccDEV/issues/703
- https://github.com/InternationalColorConsortium/iccDEV/pull/739
- https://github.com/InternationalColorConsortium/iccDEV/security/advisories/GHSA-983c-rgh5-4982
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=enelgroup' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
