Mercedes-Benz Research and Development India Company CyberSecurity Posture
mbrdi.co.in
Mercedes-Benz Research and Development India (MBRDI) is the largest research and development centre for Mercedes-Benz Group AG outside of Germany. With over 27 years of innovation, MBRDI is contributing towards building the world’s most desirable cars, right here from India. Our mission - shape the future of sustainable mobility, one innovation at a time. MBRDI’s expertise includes developing new technologies like connected, autonomous and electric in the mobility world - driving digital acceleration, leading excellence in-car software and paving the way for sustainable mobility. MBRDI currently employs over 8500 professionals in the field of engineering, digitalisation, testing and simulation, and data science, with people at the heart of our culture. Our philosophy - When every individual shines in his or her own capabilities, we shine! We are committed to building an environment where everyone is enabled to bring their true self to work, each day. By fostering a diverse & inclusive work ecosystem, and enabling equal opportunities, we are building a culture that inspires innovation and sparks creativity and growth.
Company Details
mercedes-benz-research-and-development-india
10,523
1,116,594
3361
mbrdi.co.in
0
MER_1927347
In-progress
MRDI Risk Score (AI oriented)Between 750 and 799
MRDI Global Score (TPRM)XXXX
Description: Owners of Mercedes-Benz vehicles have reported that the app they used to remotely find, unlock, and start their vehicles displayed information on other people's accounts and vehicles. Customers claimed that the Mercedes-Benz linked car app was accessing data from accounts other than their own and displaying names, recent activity, phone numbers, and other information for other car owners. The alleged security breach occurred late on Friday, and a few hours later the app was taken offline for site maintenance. The information shown was cached information; there was no real-time access to the account, no financial information could be viewed, and there was no way to interact with or locate the car connected to the account.
No incidents recorded for Mercedes-Benz Research and Development India in 2025.
No incidents recorded for Mercedes-Benz Research and Development India in 2025.
No incidents recorded for Mercedes-Benz Research and Development India in 2025.
MRDI cyber incidents detection timeline including parent company and subsidiaries
Mercedes-Benz Research and Development India (MBRDI) is the largest research and development centre for Mercedes-Benz Group AG outside of Germany. With over 27 years of innovation, MBRDI is contributing towards building the world’s most desirable cars, right here from India. Our mission - shape the future of sustainable mobility, one innovation at a time. MBRDI’s expertise includes developing new technologies like connected, autonomous and electric in the mobility world - driving digital acceleration, leading excellence in-car software and paving the way for sustainable mobility. MBRDI currently employs over 8500 professionals in the field of engineering, digitalisation, testing and simulation, and data science, with people at the heart of our culture. Our philosophy - When every individual shines in his or her own capabilities, we shine! We are committed to building an environment where everyone is enabled to bring their true self to work, each day. By fostering a diverse & inclusive work ecosystem, and enabling equal opportunities, we are building a culture that inspires innovation and sparks creativity and growth.
FORVIA HELLA is a listed international automotive supplier. As a company of the FORVIA Group, FORVIA HELLA stands for high-performance lighting technology and vehicle electronics and, with the Lifecycle Solutions Business Group, also covers a broad service and product portfolio for the spare parts a
Company profile GRAMMER AG, which has its head office in Ursensollen, specializes in the development and production of complex components and systems for automotive interiors as well as suspension driver and passenger seats for onroad and offroad vehicles. In the Automotive product area, the Company
Everything we do starts with people. Our purpose is to provide freedom to move, in a personal, sustainable and safe way. We are committed to simplifying our customers’ lives by offering better technology solutions that improve their impact on the world and bringing the most advanced mobility innovat
General Motors’ vision is to create a world with Zero Crashes, Zero Emissions and Zero Congestion, and we have committed ourselves to leading the way toward this future. Today, we are in the midst of a transportation revolution, and we have the ambition, the talent and the technology to realize the
A USD 19.4 billion multinational group based in Mumbai, India, Mahindra provides employment opportunities to over 256,000 people across 100 countries. Mahindra operates in the key industries that drive economic growth, enjoying a leadership position in tractors, utility vehicles, information technol
Our mission is clear: to become a lifelong mobility partner for our customers and communities by creating meaningful progress through clean energy, connected technology, and human-centered innovation. Hyundai Motor Company is a global mobility leader committed to shaping a better future. With more
Continental develops pioneering technologies and services for sustainable and connected mobility of people and their goods. Founded in 1871, the technology company offers safe, efficient, intelligent and affordable solutions for vehicles, machines, traffic and transportation. In 2023, Continental ge
Sumitomo Electric Bordnetze SE (SEBN) is a global automotive supplier with over 36,000 employees in 13 countries. SEBN is part of the Japanese group Sumitomo Electric Industries, which has 380 subsidiaries in various industries worldwide. The more than 400-year-old Sumitomo Electric Group employs 28
Li Auto Inc. is a leader in China's new energy vehicle market. The Company designs, develops, manufactures, and sells premium smart electric vehicles. Its mission is: Create a Mobile Home, Create Happiness (创造移动的家,创造幸福的家). Through innovations in product, technology, and business model, the Company p
.png)
Mercedes-Benz Research and Development India (MBRDI) and TERI are calling for urgent investment in skills training to power India's EV...
India's push for electric mobility may falter without a skilled workforce to run EV charging stations, as a new study warns of training gaps...
Automotive Global Capability Centres (GCCs) in India have evolved way beyond their initial role as cost-arbitrage entities.
The company's manufacturing plan is supported by the establishment of a massive 630-acre campus at Bidkin, Maharashtra.
Here are the worldwide cybersecurity job openings available as of June 17, 2025, including on-site, hybrid, and remote roles.
Cars News: Mercedes-Benz India has introduced the AMG G 63 Collector's Edition, priced at Rs 4.3 crore. This exclusive variant, limited to...
Our teams at Mercedes-Benz Research and Development India (MBRDI) are contributing to rearchitecting the entire technology stack for software-defined vehicles...
Tata Elxsi plans major strides in AI/ML, cloud computing, and cybersecurity for 2025, says VP Sundar Ramachandran. Discover how AI CoE,...
Tata Elxsi, has collaborated with Mercedes-Benz Research and Development India (MBRDI) for the development of vehicle software engineering...
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
The official website of Mercedes-Benz Research and Development India is https://www.mbrdi.co.in/#/.
According to Rankiteo, Mercedes-Benz Research and Development India’s AI-generated cybersecurity score is 787, reflecting their Fair security posture.
According to Rankiteo, Mercedes-Benz Research and Development India currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
According to Rankiteo, Mercedes-Benz Research and Development India is not certified under SOC 2 Type 1.
According to Rankiteo, Mercedes-Benz Research and Development India does not hold a SOC 2 Type 2 certification.
According to Rankiteo, Mercedes-Benz Research and Development India is not listed as GDPR compliant.
According to Rankiteo, Mercedes-Benz Research and Development India does not currently maintain PCI DSS compliance.
According to Rankiteo, Mercedes-Benz Research and Development India is not compliant with HIPAA regulations.
According to Rankiteo,Mercedes-Benz Research and Development India is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Mercedes-Benz Research and Development India operates primarily in the Motor Vehicle Manufacturing industry.
Mercedes-Benz Research and Development India employs approximately 10,523 people worldwide.
Mercedes-Benz Research and Development India presently has no subsidiaries across any sectors.
Mercedes-Benz Research and Development India’s official LinkedIn profile has approximately 1,116,594 followers.
Mercedes-Benz Research and Development India is classified under the NAICS code 3361, which corresponds to Motor Vehicle Manufacturing.
No, Mercedes-Benz Research and Development India does not have a profile on Crunchbase.
Yes, Mercedes-Benz Research and Development India maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/mercedes-benz-research-and-development-india.
As of December 11, 2025, Rankiteo reports that Mercedes-Benz Research and Development India has experienced 1 cybersecurity incidents.
Mercedes-Benz Research and Development India has an estimated 12,645 peer or competitor companies worldwide.
Incident Types: The types of cybersecurity incidents that have occurred include Data Leak.
Detection and Response: The company detects and responds to cybersecurity incidents through an containment measures with app taken offline for site maintenance..
Title: Mercedes-Benz Linked Car App Data Breach
Description: Owners of Mercedes-Benz vehicles have reported that the app they used to remotely find, unlock, and start their vehicles displayed information on other people's accounts and vehicles.
Date Detected: Late on Friday
Type: Data Breach
Attack Vector: Application Vulnerability
Common Attack Types: The most common types of attacks the company has faced is Data Leak.
Data Compromised: Names, Recent activity, Phone numbers
Systems Affected: Mercedes-Benz Linked Car App
Downtime: App taken offline for site maintenance
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Recent Activity, Phone Numbers and .
Entity Name: Mercedes-Benz
Entity Type: Company
Industry: Automotive
Containment Measures: App taken offline for site maintenance
Type of Data Compromised: Names, Recent activity, Phone numbers
Personally Identifiable Information: NamesPhone Numbers
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by app taken offline for site maintenance.
Most Recent Incident Detected: The most recent incident detected was on Late on Friday.
Most Significant Data Compromised: The most significant data compromised in an incident were Names, Recent Activity, Phone Numbers and .
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident was App taken offline for site maintenance.
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Phone Numbers, Names and Recent Activity.
.png)
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Get company history
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rapid