Comparison Overview

Maaden

Saudi Arabia, Riyadh, SA, 11537

Last Update: 2026-04-01

Between 800 and 849

http://www.maaden.com

Maaden is Saudi Arabia’s engine of industrial transformation and one of the world’s top ten mining giants by market cap and fastest growing globally. We’re building the future of mining, creating fully integrated value chains across gold, phosphate, bauxite, copper and beyond. Maaden’s new era of growth is at pace and scale unlike anything the industry has ever seen. We’re doubling gold production by 2030, investing SAR 420 billion ($112 billion) through 2040 and scaling world-class projects that will redefine what’s possible for Saudi mining. This isn’t evolution; it’s transformation at speed, at scale and with purpose. Since going public in 2008, Maaden has invested over SAR 120 billion ($32 billion) to build large-scale, long-life, cost-competitive operations that deliver both world-class products and strong returns. We help power Saudi Vision 2030 by making mining a key pillar of a diversified and sustainable economy beyond oil. We’re creating new industries, new jobs and new opportunities. With a team of over 8,000 people, Maaden is writing the next chapter of industrial progress in Saudi Arabia. Join us as we shape the future of mining and unearth tomorrow, together.

NAICS: 212

NAICS Definition: Mining (except Oil and Gas)

Employees: 11,163

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

ArcelorMittal

24 - 26 Boulevard d'Avranches, L-1160 Luxembourg, LU

Last Update: 2026-04-01

Between 800 and 849

http://corporate.arcelormittal.com

ArcelorMittal is the world's leading steel and mining company, with a presence in more than 60 countries and an industrial footprint in 18 countries. Guided by a philosophy to produce safe, sustainable steel, we are the leading supplier of quality steel in the major global steel markets including automotive, construction, household appliances and packaging, with world-class research and development and outstanding distribution networks. Through our core values of sustainability, quality and leadership, we operate responsibly with respect to the health, safety and wellbeing of our employees, contractors and the communities in which we operate. For us, steel is the fabric of life, as it is at the heart of the modern world from railways to cars and washing machines. We are actively researching and producing steel-based technologies and solutions that make many of the products and components we use in our everyday lives more energy-efficient. We are one of the world’s five largest producers of iron ore and metallurgical coal and our mining business is an essential part of our growth strategy. With a geographically diversified portfolio of iron ore and coal assets, we are strategically positioned to serve our network of steel plants and the external global market.

NAICS: 212

NAICS Definition: Mining (except Oil and Gas)

Employees: 62,130

Subsidiaries: 18

12-month incidents

0

Known data breaches

0

Attack type number

0

Maaden

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

ArcelorMittal

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Mining Industry Average (This Year)

No incidents recorded for Maaden in 2026.

Incidents vs Mining Industry Average (This Year)

No incidents recorded for ArcelorMittal in 2026.

Incident History — Maaden (X = Date, Y = Severity)

Maaden cyber incidents detection timeline including parent company and subsidiaries

Incident History — ArcelorMittal (X = Date, Y = Severity)

ArcelorMittal cyber incidents detection timeline including parent company and subsidiaries

Maaden

Incidents

No Incident

ArcelorMittal

Incidents

No Incident

Maaden company demonstrates a stronger AI Cybersecurity Score compared to ArcelorMittal company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, ArcelorMittal company has disclosed a higher number of cyber incidents compared to Maaden company.

In the current year, ArcelorMittal company and Maaden company have not reported any cyber incidents.

Neither ArcelorMittal company nor Maaden company has reported experiencing a ransomware attack publicly.

Neither ArcelorMittal company nor Maaden company has reported experiencing a data breach publicly.

Neither ArcelorMittal company nor Maaden company has reported experiencing targeted cyberattacks publicly.

Neither Maaden company nor ArcelorMittal company has reported experiencing or disclosing vulnerabilities publicly.

Neither Maaden nor ArcelorMittal holds any compliance certifications.

Neither company holds any compliance certifications.

ArcelorMittal company has more subsidiaries worldwide compared to Maaden company.

ArcelorMittal company employs more people globally than Maaden company, reflecting its scale as a Mining.

Neither Maaden nor ArcelorMittal holds SOC 2 Type 1 certification.

Neither Maaden nor ArcelorMittal holds SOC 2 Type 2 certification.

Neither Maaden nor ArcelorMittal holds ISO 27001 certification.

Neither Maaden nor ArcelorMittal holds PCI DSS certification.

Neither Maaden nor ArcelorMittal holds HIPAA certification.

Neither Maaden nor ArcelorMittal holds GDPR certification.

Description

nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, two peer-facing consensus request handlers assume that the history index is always available and call blockchain.history_store.history_index().unwrap() directly. That assumption is false by construction. HistoryStoreProxy::history_index() explicitly returns None for the valid HistoryStoreProxy::WithoutIndex state. when a full node is syncing or otherwise running without the history index, a remote peer can send RequestTransactionsProof or RequestTransactionReceiptsByAddress and trigger an Option::unwrap() panic on the request path. This issue has been patched in version 1.3.0.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 5.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

References

Description

PraisonAI is a multi-agent teams system. Prior to version 1.5.95, FileTools.download_file() in praisonaiagents validates the destination path but performs no validation on the url parameter, passing it directly to httpx.stream() with follow_redirects=True. An attacker who controls the URL can reach any host accessible from the server including cloud metadata services and internal network services. This issue has been patched in version 1.5.95.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 8.6

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

References

https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-44c2-3rw4-5gvh

Description

PraisonAI is a multi-agent teams system. Prior to version 4.5.97, OAuthManager.validate_token() returns True for any token not found in its internal store, which is empty by default. Any HTTP request to the MCP server with an arbitrary Bearer token is treated as authenticated, granting full access to all registered tools and agent capabilities. This issue has been patched in version 4.5.97.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 9.1

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

References

https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-98f9-fqg5-hvq5

Description

PraisonAI is a multi-agent teams system. Prior to version 4.5.97, the PraisonAI Gateway server accepts WebSocket connections at /ws and serves agent topology at /info with no authentication. Any network client can connect, enumerate registered agents, and send arbitrary messages to agents and their tool sets. This issue has been patched in version 4.5.97.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 9.1

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

References

https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-cfh6-vr3j-qc3g

Description

PraisonAI is a multi-agent teams system. Prior to version 4.5.90, MCPToolIndex.search_tools() compiles a caller-supplied string directly as a Python regular expression with no validation, sanitization, or timeout. A crafted regex causes catastrophic backtracking in the re engine, blocking the Python thread for hundreds of seconds and causing a complete service outage. This issue has been patched in version 4.5.90.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 6.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

References

https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-8w9j-hc3g-3g7f

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Maaden

VS

ArcelorMittal

Maaden

ArcelorMittal

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Mining Industry Average (This Year)

Incidents vs Mining Industry Average (This Year)

Incident History — Maaden (X = Date, Y = Severity)

Incident History — ArcelorMittal (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2026-35468

Risk Information

CVE-2026-34954

Risk Information

CVE-2026-34953

Risk Information

CVE-2026-34952

Risk Information

CVE-2026-34939

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Maaden

VS

ArcelorMittal

Maaden

ArcelorMittal

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Mining Industry Average (This Year)

Incidents vs Mining Industry Average (This Year)

Incident History — Maaden (X = Date, Y = Severity)

Incident History — ArcelorMittal (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Between Maaden company and ArcelorMittal company, which one has the best AI Cybersecurity Score ?

Between Maaden company and ArcelorMittal company, which one has experienced more cyber incidents in the past ?

Between Maaden company and ArcelorMittal company, which one has experienced more cyber incidents this year ?

Between Maaden company and ArcelorMittal company, which one has experienced at least one ransomware attack ?

Between Maaden company and ArcelorMittal company, which one has experienced at least one data breach ?

Between Maaden company and ArcelorMittal company, which one has experienced at least one targeted cyberattack ?

Between Maaden company and ArcelorMittal company, which one has experienced at least one vulnerability ?

Between Maaden company and ArcelorMittal company, which one holds the most compliance certifications ?

Between Maaden company and ArcelorMittal company, which one holds the fewest compliance certifications ?

Between Maaden company and ArcelorMittal company, which one has the most subsidiaries ?

Between Maaden company and ArcelorMittal company, which one has the largest number of employees ?

Between Maaden and ArcelorMittal, which company holds both SOC 2 Type 1 certifications ?

Between Maaden and ArcelorMittal, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Maaden or ArcelorMittal ?

Which company is PCI DSS compliant — Maaden or ArcelorMittal ?

Between Maaden and ArcelorMittal, which company complies with HIPAA regulations for healthcare data ?

Between Maaden and ArcelorMittal, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2026-35468

Risk Information

CVE-2026-34954

Risk Information

CVE-2026-34953

Risk Information

CVE-2026-34952

Risk Information

CVE-2026-34939

Risk Information