Axis Bank
Company Details
Linkedin ID:
axis-bank
Website:
Employees number:
91,929
Number of followers:
2,742,737
NAICS:
52211
Industry Type:
Homepage:
axisbank.com
IP Addresses:
0
Company ID:
AXI_7082009
Scan Status:
In-progress
Axis Bank Company CyberSecurity Posture
axisbank.com
Axis Bank is the third largest private sector bank in India. The Bank offers the entire spectrum of financial services to customer segments covering Large and Mid-Corporates, MSME, Agriculture and Retail Businesses. The Bank has a large footprint of 5000 domestic branches (including extension counters) with 15,751 ATMs & cash recyclers spread across the country. The Bank has 6 Axis Virtual Centres with over 1,500 Virtual Relationship Managers as on 31st March 2023. The Overseas operations of the Bank are spread over eight international offices with branches in Singapore, Dubai (at DIFC), and Gift City-IBU; representative offices in Dhaka, Dubai, Abu Dhabi, Sharjah and an overseas subsidiary in London, UK. The international offices focus on Corporate Lending, Coverage Business, Trade Finance, Syndication, Investment Banking, Liability Businesses, and Private Banking/Wealth Management offerings. Axis Bank is one of the first new generation private sector banks to have begun operations in 1994. The Bank was promoted in 1993, jointly by Specified Undertaking of Unit Trust of India (SUUTI) (then known as Unit Trust of India), Life Insurance Corporation of India (LIC), General Insurance Corporation of India (GIC), National Insurance Company Ltd. (NIC), The New India Assurance Company Ltd. (NIA), The Oriental Insurance Company Ltd. (OIC), and United India Insurance Company Ltd. (UIIC). The shareholding of Unit Trust of India was subsequently transferred to SUUTI, an entity established in 2003. GIC, NIC, NIA, OIC, UIIC have been reclassified from promoter category to public category. As on March 31, 2023, SUUTI and LIC are the promoters of the Bank. With a balance sheet size of Rs. 13,17,326 crores as on 31st March 2023, Axis Bank has achieved consistent growth and with a 5-year CAGR (2017-18 to 2022-23) of 14% each in Total Assets & Advances and 16% in Deposits.
Axis Bank A.I CyberSecurity Scoring
Axis Bank Risk Score (AI oriented)Between 800 and 849
Axis Bank
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Axis Bank Global Score (TPRM)XXXX
Axis Bank
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Axis Bank Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Axis Bank
Breach
Rankiteo Explanation
Attack threatening the organization’s existence
Description: Several Indian banks have taken drastic steps in response to a security breach that may have compromised up to 3.25 million debit cards—or 0.5% of the approximately 700 million debit cards that Indian banks have issued. The financial institution is Hitachi Payment Services, a subsidiary of Hitachi Ltd. that oversees ATM network processing for Yes Bank Ltd., according to banking industry insiders. After that, the State Bank of India quickly disabled a few clients' debit cards, and it was currently replacing those cards to stop fraud. The top three private sector lenders, ICICI Bank, HDFC Bank, and Axis Bank, each stated in separate announcements that there may have been card account breaches following usage at non-bank ATMs. Additionally, certain consumers' debit cards are being reissued by Standard Chartered's Indian division.
Axis Bank Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Axis Bank
Incidents vs Banking Industry Average (This Year)
No incidents recorded for Axis Bank in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Axis Bank in 2025.
Incident Types Axis Bank vs Banking Industry Avg (This Year)
No incidents recorded for Axis Bank in 2025.
Incident History — Axis Bank (X = Date, Y = Severity)
Axis Bank cyber incidents detection timeline including parent company and subsidiaries
Axis Bank Company Subsidiaries
Axis Bank is the third largest private sector bank in India. The Bank offers the entire spectrum of financial services to customer segments covering Large and Mid-Corporates, MSME, Agriculture and Retail Businesses. The Bank has a large footprint of 5000 domestic branches (including extension counters) with 15,751 ATMs & cash recyclers spread across the country. The Bank has 6 Axis Virtual Centres with over 1,500 Virtual Relationship Managers as on 31st March 2023. The Overseas operations of the Bank are spread over eight international offices with branches in Singapore, Dubai (at DIFC), and Gift City-IBU; representative offices in Dhaka, Dubai, Abu Dhabi, Sharjah and an overseas subsidiary in London, UK. The international offices focus on Corporate Lending, Coverage Business, Trade Finance, Syndication, Investment Banking, Liability Businesses, and Private Banking/Wealth Management offerings. Axis Bank is one of the first new generation private sector banks to have begun operations in 1994. The Bank was promoted in 1993, jointly by Specified Undertaking of Unit Trust of India (SUUTI) (then known as Unit Trust of India), Life Insurance Corporation of India (LIC), General Insurance Corporation of India (GIC), National Insurance Company Ltd. (NIC), The New India Assurance Company Ltd. (NIA), The Oriental Insurance Company Ltd. (OIC), and United India Insurance Company Ltd. (UIIC). The shareholding of Unit Trust of India was subsequently transferred to SUUTI, an entity established in 2003. GIC, NIC, NIA, OIC, UIIC have been reclassified from promoter category to public category. As on March 31, 2023, SUUTI and LIC are the promoters of the Bank. With a balance sheet size of Rs. 13,17,326 crores as on 31st March 2023, Axis Bank has achieved consistent growth and with a 5-year CAGR (2017-18 to 2022-23) of 14% each in Total Assets & Advances and 16% in Deposits.
Loading...
Axis Bank Similar Companies
CIC
CIC is the fourth largest banking group in France, consisting of seven regional banks which operate across France through a network of 1,844 branches employing 24,000 staff. CIC's customer base includes 2.7 million retail clients. One in eleven self-employed professionals is a CIC group client and n
China Merchants Bank
Established in 1987 in Shenzhen, the forefront of China’s reform and opening-up drive, China Merchants Bank ("CMB") has developed into the most influential commercial bank brand in China thanks to continuous financial innovation, quality customer service, prudent management and strong business perfo
Credit Suisse Group AG has been acquired by UBS Group AG. UBS is the world’s largest and only truly global wealth manager. We operate through four business divisions: Global Wealth Management, Personal & Corporate Banking, Asset Management, and the Investment Bank. Our global reach and the breadth
Bank Mega
Perjalanan Bank Mega berawal pada tahun 1969, dengan nama PT Bank Karman di Surabaya. Kemudian bertransformasi menjadi Mega Bank pada tahun 1992, dan berpindah lokasi ke Jakarta. Pada tahun 1996, Chairul Tanjung dengan PARA GROUP, yang kini dikenal dengan CT Corpora, mengambil alih dan membuat gebra
Utkarsh Small Finance Bank
Utkarsh Small Finance Bank Limited (USFBL), incorporated on April 30, 2016, is engaged in providing banking and financial services with a focus on the underserved and unserved sections of the country. The Bank’s lending activities are primarily focussed in rural and semi-urban locations of the count
**Never share your password, OTP, UPI Pin, CVV etc with anyone.** Formed in December 2018 through the merger of infrastructure finance giant IDFC Bank and retail finance specialist Capital First, we commenced commercial banking operations in 2016. Our core principles: Vision: Building a world-clas
Emirates NBD
About Emirates NBD Emirates NBD (DFM: Emirates NBD) is a leading banking group in the MENAT (Middle East, North Africa and Türkiye) region with a presence in 13 countries, serving over 20 million customers. As at 30th September 2023, total assets were AED 836 billion, (equivalent to approx. USD 2
Central Bank of India
Welcome to the official LinkedIn page of Central Bank of India. Central Bank of India offers a wide range of products and services for every segment. Please join us to know more about our best products & services, attractive offers and the latest updates. We invite & value your active participatio
HDFC Bank is India's largest private sector bank, offering a comprehensive range of financial products and services to our customer base of over 92 million. Our extensive distribution network of 8,919 branches and 21,031 ATMs across 3,836 cities and towns as of August 2024, reaches every corner of t
.png)
Axis Bank CyberSecurity News
November 27, 2025 08:34 AM
Qualys Hosts ROCon 2025 Cybersecurity Conference
ROCon 2025 Mumbai unites global cybersecurity leaders to discuss cyber risk, AI, and resilience strategies.
November 27, 2025 08:33 AM
Qualys Hosts ROCon 2025 Cybersecurity Leadership Event
ROCon Mumbai 2025 unites cybersecurity leaders to enhance risk management and digital resilience strategies.
November 27, 2025 04:46 AM
Infocom to turn city into tech nerve centre: AI, cybersecurity and future work in focus
AI has evolved beyond automation, and is fast emerging as a noticeable component in decision-making, creative intelligence,...
November 05, 2025 08:00 AM
RBI’s major move, banks to benefit significantly
RBI New Rule: The Reserve Bank of India has directed Indian banks to migrate their net banking websites to the '.bank.in' domain.
November 01, 2025 07:00 AM
Bank Domain Change Alert: Many banks, including SBI, PNB, HDFC, ICICI, have changed their website domains; ...
Now, if you're going to open your bank's website, pay close attention, because the addresses of banking websites are no longer the same.
October 31, 2025 07:00 AM
New RBI rule: Banks move to secure ‘.bank.in’ domains to curb online fraud
Under the new rule, only RBI-regulated banks can register and use the '.bank.in' domain.
October 31, 2025 07:00 AM
Banks shift to ".bank.in" domain to boost cybersecurity
The Reserve Bank of India (RBI) has directed all banks to shift their official websites to the '.bank.in' domain, aiming to enhance...
October 26, 2025 07:00 AM
Indian banks begin switch to .bank.in domain to meet RBI’s cybersecurity deadline
The digital landscape of Indian banking is undergoing a huge security-focused shift right now, as Reserve Bank of India's (RBI) directive...
October 06, 2025 07:00 AM
Vaibhav Sonavane Appointed as Chief Information Security Officer at CSB Bank Limited
CSB Bank Limited has announced the appointment of Vaibhav Sonavane as its new Chief Information Security Officer (CISO), reinforcing the...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Axis Bank CyberSecurity History Information
Official Website of Axis Bank
The official website of Axis Bank is http://www.axisbank.com.
Axis Bank’s AI-Generated Cybersecurity Score
According to Rankiteo, Axis Bank’s AI-generated cybersecurity score is 803, reflecting their Good security posture.
How many security badges does Axis Bank’ have ?
According to Rankiteo, Axis Bank currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Axis Bank have SOC 2 Type 1 certification ?
According to Rankiteo, Axis Bank is not certified under SOC 2 Type 1.
Does Axis Bank have SOC 2 Type 2 certification ?
According to Rankiteo, Axis Bank does not hold a SOC 2 Type 2 certification.
Does Axis Bank comply with GDPR ?
According to Rankiteo, Axis Bank is not listed as GDPR compliant.
Does Axis Bank have PCI DSS certification ?
According to Rankiteo, Axis Bank does not currently maintain PCI DSS compliance.
Does Axis Bank comply with HIPAA ?
According to Rankiteo, Axis Bank is not compliant with HIPAA regulations.
Does Axis Bank have ISO 27001 certification ?
According to Rankiteo,Axis Bank is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Axis Bank
Axis Bank operates primarily in the Banking industry.
Number of Employees at Axis Bank
Axis Bank employs approximately 91,929 people worldwide.
Subsidiaries Owned by Axis Bank
Axis Bank presently has no subsidiaries across any sectors.
Axis Bank’s LinkedIn Followers
Axis Bank’s official LinkedIn profile has approximately 2,742,737 followers.
NAICS Classification of Axis Bank
Axis Bank is classified under the NAICS code 52211, which corresponds to Commercial Banking.
Axis Bank’s Presence on Crunchbase
Yes, Axis Bank has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/axis-bank.
Axis Bank’s Presence on LinkedIn
Yes, Axis Bank maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/axis-bank.
Cybersecurity Incidents Involving Axis Bank
As of December 11, 2025, Rankiteo reports that Axis Bank has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Axis Bank has an estimated 6,989 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Axis Bank ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
How does Axis Bank detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an incident response plan activated with yes, and containment measures with disabling affected debit cards, and remediation measures with reissuing debit cards, and communication strategy with public announcements by affected banks..
Incident Details
Can you provide details on each incident ?
Title: Security Breach Compromises 3.25 Million Debit Cards in India
Description: Several Indian banks have taken drastic steps in response to a security breach that may have compromised up to 3.25 million debit cards—or 0.5% of the approximately 700 million debit cards that Indian banks have issued.
Type: Data Breach
Attack Vector: Compromised ATM network processing
Vulnerability Exploited: ATM network processing
Motivation: Financial Gain
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through ATM network processing.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach AXI173851123
Data Compromised: Debit card information
Systems Affected: ATM network processing systems
Operational Impact: Reissuing of debit cards
Brand Reputation Impact: Negative impact on customer trust
Identity Theft Risk: High
Payment Information Risk: High
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Debit card information.
Which entities were affected by each incident ?
Incident : Data Breach AXI173851123
Entity Name: Hitachi Payment Services
Entity Type: Financial Institution
Industry: Financial Services
Location: India
Customers Affected: 3250000
Incident : Data Breach AXI173851123
Entity Name: Yes Bank Ltd.
Entity Type: Financial Institution
Industry: Financial Services
Location: India
Incident : Data Breach AXI173851123
Entity Name: State Bank of India
Entity Type: Financial Institution
Industry: Financial Services
Location: India
Incident : Data Breach AXI173851123
Entity Name: ICICI Bank
Entity Type: Financial Institution
Industry: Financial Services
Location: India
Incident : Data Breach AXI173851123
Entity Name: HDFC Bank
Entity Type: Financial Institution
Industry: Financial Services
Location: India
Incident : Data Breach AXI173851123
Entity Name: Axis Bank
Entity Type: Financial Institution
Industry: Financial Services
Location: India
Incident : Data Breach AXI173851123
Entity Name: Standard Chartered
Entity Type: Financial Institution
Industry: Financial Services
Location: India
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach AXI173851123
Incident Response Plan Activated: Yes
Containment Measures: Disabling affected debit cards
Remediation Measures: Reissuing debit cards
Communication Strategy: Public announcements by affected banks
What is the company's incident response plan?
Incident Response Plan: The company's incident response plan is described as Yes.
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach AXI173851123
Type of Data Compromised: Debit card information
Number of Records Exposed: 3250000
Sensitivity of Data: High
Personally Identifiable Information: Yes
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Reissuing debit cards.
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by disabling affected debit cards.
Investigation Status
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Public announcements by affected banks.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : Data Breach AXI173851123
Customer Advisories: Reissuing of debit cards
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: was Reissuing of debit cards.
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Data Breach AXI173851123
Entry Point: ATM network processing
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Breach AXI173851123
Corrective Actions: Reissuing debit cards
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Reissuing debit cards.
Additional Questions
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident was Debit card information.
Response to the Incidents
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident was Disabling affected debit cards.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was Debit card information.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 325.0.
Stakeholder and Customer Advisories
What was the most recent customer advisory issued ?
Most Recent Customer Advisory: The most recent customer advisory issued was an Reissuing of debit cards.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an ATM network processing.
.png)
Latest Global CVEs (Not Company-Specific)
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Description
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
Risk Information
cvss3
Base: 8.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
Description
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Risk Information
cvss3
Base: 5.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=axis-bank' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
