ExxonMobil
Company Details
Linkedin ID:
exxonmobil
Website:
Employees number:
66,908
Number of followers:
3,639,738
NAICS:
211
Industry Type:
Homepage:
exxonmobil.com
IP Addresses:
294
Company ID:
EXX_1090820
Scan Status:
Completed
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
ExxonMobil Vendor Cyber Rating & Cyber Score
exxonmobil.comThe need for energy is universal. That's why ExxonMobil scientists and engineers are pioneering new research and pursuing new technologies to reduce emissions while creating more efficient fuels. We're committed to responsibly meeting the world's energy needs. We aim to achieve #netzero emissions from our operated assets by 2050 (for Scope 1 and 2 greenhouse gas emissions) and are taking a comprehensive approach to create emission-reduction roadmaps for major operated assets. Find us also on: YouTube.com/ExxonMobil Find our latest Privacy Policy at https://corporate.exxonmobil.com/Global-legal-pages/privacy-policy See our terms and conditions at https://corporate.exxonmobil.com/global-legal-pages/terms-and-conditions Find resources on our GHG emission reduction efforts here: https://corporate.exxonmobil.com/resources
ExxonMobil A.I CyberSecurity Scoring
ExxonMobil Risk Score (AI oriented)Between 800 and 849
ExxonMobil
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
ExxonMobil Global Score (TPRM)XXXX
ExxonMobil
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
ExxonMobil Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Exxon
Breach
Rankiteo Explanation
Attack threatening the organization’s existence
Description: Exxon faced a significant reputational and potential financial impact due to a hack-and-leak operation targeting climate change activists. The firm hired by Exxon, DCI Group, was investigated for its alleged role in the incident. The internal communications about litigation against Exxon were obtained and leaked to the media, causing disruption to the activists and exposing Exxon to legal and public relations challenges. This attack caused distress among the affected parties and raised questions about the lengths to which corporations might go to protect their interests amid environmental scrutiny.
ExxonMobil Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for ExxonMobil
Incidents vs Oil and Gas Industry Average (This Year)
No incidents recorded for ExxonMobil in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for ExxonMobil in 2026.
Incident Types ExxonMobil vs Oil and Gas Industry Avg (This Year)
No incidents recorded for ExxonMobil in 2026.
Incident History — ExxonMobil (X = Date, Y = Severity)
ExxonMobil cyber incidents detection timeline including parent company and subsidiaries
ExxonMobil Company Subsidiaries
The need for energy is universal. That's why ExxonMobil scientists and engineers are pioneering new research and pursuing new technologies to reduce emissions while creating more efficient fuels. We're committed to responsibly meeting the world's energy needs. We aim to achieve #netzero emissions from our operated assets by 2050 (for Scope 1 and 2 greenhouse gas emissions) and are taking a comprehensive approach to create emission-reduction roadmaps for major operated assets. Find us also on: YouTube.com/ExxonMobil Find our latest Privacy Policy at https://corporate.exxonmobil.com/Global-legal-pages/privacy-policy See our terms and conditions at https://corporate.exxonmobil.com/global-legal-pages/terms-and-conditions Find resources on our GHG emission reduction efforts here: https://corporate.exxonmobil.com/resources
Loading...
ExxonMobil Similar Companies
Koch Engineered Solutions
Koch Engineered Solutions (KES) provides uniquely engineered solutions in construction; mass and heat transfer; combustion and emissions controls; filtration; separation; materials applications; automation and actuation. KES is located in Wichita, Kansas, and is a subsidiary of Koch Industries, one
Shell is a global group of energy and petrochemical companies, employing 96,000 people across 70+ countries. We serve around 1 million commercial and industrial customers, and around 33 million customers daily at our Shell-branded retail service stations. Our purpose is to power progress together b
PT Pertamina (Persero) is an Indonesian state-owned enterprise, which is engaged in the integrated energy in Indonesia. Established on December 10, 1957, Pertamina had the experiences in upstream, midstream, downstream and renewable energy sectors for more than 50 years. This is the official Link
Weatherford International plc (Nasdaq: WFRD) is a leading global energy services company. Operating in approximately 75 countries, the Company answers the challenges of the energy industry with its global talent network of approximately 17,000 team members and approximately 350 operating locations,
aramco
We’re a leading producer of the energy and chemicals that drive global commerce and enhance the daily lives of people around the globe by continuing delivering an uninterrupted supply of energy to the world. Our resilience and agility has built one of the world’s largest integrated energy and chemi
Sonatrach
Sonatrach (Société Nationale pour la Recherche, la Production, le Transport, la Transformation, et la Commercialisation des Hydrocarbures s.p.a.) is an Algerian government-owned company formed to exploit the hydrocarbon resources of the country. Its diversified activities cover all aspects of Oil &
We are one of the world's leading energy producers, and a primary catalyst for Abu Dhabi’s growth and diversification. We operate across the entire hydrocarbon value chain, through a network of fully-integrated businesses, with interests that range from exploration, production, storage, refining a
We are a global oil and gas company tasked with an important job—to safely find and deliver energy for the world. We’re experts in what we do—from the well site to the office. Across our operations and activities in 13 countries, we never forget our responsibility to be a great neighbor, and a gre
Amec Foster Wheeler
Wood Group has combined with Amec Foster Wheeler to form a new global leader in the delivery of project, engineering and technical services to energy and industrial markets. To find out more about Wood visit our new website at www.woodplc.com For all the latest updates and job news follow Wood on L
.png)
ExxonMobil CyberSecurity News
March 19, 2026 02:58 PM
Energean, ExxonMobil move to the next exploration phase in Greek offshore block
A joint venture by Energean, ExxonMobil and Helleniq Energy has notified Greece it would look for gas in a western offshore bloc,...
March 12, 2026 07:00 AM
ExxonMobil's Headquarters Could Move to Texas
The proposal to move ExxonMobil's headquarters to Texas seeks to align its legal base with its operations, strengthening its corporate...
March 05, 2026 08:00 AM
ExxonMobil Is Up 44% and Retail Investors Are Still Missing the Point
Amidst a growing international crisis heavily involving the price of oil, shares of ExxonMobil (NYSE:XOM) are trading at $149.78 as of...
February 10, 2026 08:00 AM
Snowflake Expands Energy Partnerships With Cognite, Argus, and Spotfire
The cloud platform provider said the initiative is designed to help energy companies manage and analyze large-scale operational data.
January 30, 2026 08:00 AM
Exxon earnings beat estimates despite low oil prices
Last year, crude oil logged the biggest annual price decline since 2020.
January 11, 2026 08:00 AM
Trump ‘inclined’ to keep ExxonMobil out of Venezuela after CEO response at White House meeting
ABOARD AIR FORCE ONE — President Donald Trump said Sunday that he is “inclined” to keep ExxonMobil out of Venezuela after its top executive...
January 08, 2026 08:00 AM
Turkey's TPAO, ExxonMobil unit sign accord covering Black Sea, Mediterranean exploration
Turkish Petroleum (TPAO) and an Exxonmobil unit signed a memorandum of understanding covering new exploration areas in the Black Sea and the...
December 31, 2025 08:00 AM
Russia Grants ExxonMobil Another Year To Sell Its Sakhalin-1 Stake
A presidential decree extends ExxonMobil's chance to possibly recoup part of the $4.6 billion loss it suffered after exiting its flagship...
December 09, 2025 08:00 AM
ExxonMobil to slash low-carbon spending by a third
ExxonMobil said it would slash planned spending on low-carbon projects by a third, as oil majors pare back clean energy initiatives and...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
ExxonMobil CyberSecurity History Information
Official Website of ExxonMobil
The official website of ExxonMobil is http://www.exxonmobil.com.
ExxonMobil’s AI-Generated Cybersecurity Score
According to Rankiteo, ExxonMobil’s AI-generated cybersecurity score is 828, reflecting their Good security posture.
How many security badges does ExxonMobil’ have ?
According to Rankiteo, ExxonMobil currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has ExxonMobil been affected by any supply chain cyber incidents ?
According to Rankiteo, ExxonMobil has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does ExxonMobil have SOC 2 Type 1 certification ?
According to Rankiteo, ExxonMobil is not certified under SOC 2 Type 1.
Does ExxonMobil have SOC 2 Type 2 certification ?
According to Rankiteo, ExxonMobil does not hold a SOC 2 Type 2 certification.
Does ExxonMobil comply with GDPR ?
According to Rankiteo, ExxonMobil is not listed as GDPR compliant.
Does ExxonMobil have PCI DSS certification ?
According to Rankiteo, ExxonMobil does not currently maintain PCI DSS compliance.
Does ExxonMobil comply with HIPAA ?
According to Rankiteo, ExxonMobil is not compliant with HIPAA regulations.
Does ExxonMobil have ISO 27001 certification ?
According to Rankiteo,ExxonMobil is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of ExxonMobil
ExxonMobil operates primarily in the Oil and Gas industry.
Number of Employees at ExxonMobil
ExxonMobil employs approximately 66,908 people worldwide.
Subsidiaries Owned by ExxonMobil
ExxonMobil presently has no subsidiaries across any sectors.
ExxonMobil’s LinkedIn Followers
ExxonMobil’s official LinkedIn profile has approximately 3,639,738 followers.
NAICS Classification of ExxonMobil
ExxonMobil is classified under the NAICS code 211, which corresponds to Oil and Gas Extraction.
ExxonMobil’s Presence on Crunchbase
No, ExxonMobil does not have a profile on Crunchbase.
ExxonMobil’s Presence on LinkedIn
Yes, ExxonMobil maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/exxonmobil.
Cybersecurity Incidents Involving ExxonMobil
As of April 04, 2026, Rankiteo reports that ExxonMobil has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
ExxonMobil has an estimated 10,824 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at ExxonMobil ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: Exxon Hack-and-Leak Operation Targeting Climate Change Activists
Description: Exxon faced a significant reputational and potential financial impact due to a hack-and-leak operation targeting climate change activists. The firm hired by Exxon, DCI Group, was investigated for its alleged role in the incident. The internal communications about litigation against Exxon were obtained and leaked to the media, causing disruption to the activists and exposing Exxon to legal and public relations challenges. This attack caused distress among the affected parties and raised questions about the lengths to which corporations might go to protect their interests amid environmental scrutiny.
Type: Hack-and-Leak Operation
Threat Actor: DCI Group
Motivation: To protect corporate interests amid environmental scrutiny
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Hack-and-Leak Operation EXX000120924
Data Compromised: Internal communications about litigation
Operational Impact: Disruption to climate change activists
Brand Reputation Impact: Significant reputational impact
Legal Liabilities: Exposed to legal and public relations challenges
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Internal Communications and .
Which entities were affected by each incident ?
Incident : Hack-and-Leak Operation EXX000120924
Entity Name: Exxon
Entity Type: Corporation
Industry: Energy
Data Breach Information
What type of data was compromised in each breach ?
Incident : Hack-and-Leak Operation EXX000120924
Type of Data Compromised: Internal communications
Data Exfiltration: Internal communications about litigation
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an DCI Group.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Internal communications about litigation and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was Internal communications about litigation.
.png)
Latest Global CVEs (Not Company-Specific)
Description
nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, two peer-facing consensus request handlers assume that the history index is always available and call blockchain.history_store.history_index().unwrap() directly. That assumption is false by construction. HistoryStoreProxy::history_index() explicitly returns None for the valid HistoryStoreProxy::WithoutIndex state. when a full node is syncing or otherwise running without the history index, a remote peer can send RequestTransactionsProof or RequestTransactionReceiptsByAddress and trigger an Option::unwrap() panic on the request path. This issue has been patched in version 1.3.0.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Description
PraisonAI is a multi-agent teams system. Prior to version 1.5.95, FileTools.download_file() in praisonaiagents validates the destination path but performs no validation on the url parameter, passing it directly to httpx.stream() with follow_redirects=True. An attacker who controls the URL can reach any host accessible from the server including cloud metadata services and internal network services. This issue has been patched in version 1.5.95.
Risk Information
cvss3
Base: 8.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, OAuthManager.validate_token() returns True for any token not found in its internal store, which is empty by default. Any HTTP request to the MCP server with an arbitrary Bearer token is treated as authenticated, granting full access to all registered tools and agent capabilities. This issue has been patched in version 4.5.97.
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, the PraisonAI Gateway server accepts WebSocket connections at /ws and serves agent topology at /info with no authentication. Any network client can connect, enumerate registered agents, and send arbitrary messages to agents and their tool sets. This issue has been patched in version 4.5.97.
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.90, MCPToolIndex.search_tools() compiles a caller-supplied string directly as a Python regular expression with no validation, sanitization, or timeout. A crafted regex causes catastrophic backtracking in the re engine, blocking the Python thread for hundreds of seconds and causing a complete service outage. This issue has been patched in version 4.5.90.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=exxonmobil' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
