RIL
Company Details
Linkedin ID:
reliance
Website:
Employees number:
188,212
Number of followers:
4,426,231
NAICS:
211
Industry Type:
Homepage:
ril.com
IP Addresses:
0
Company ID:
REL_1904399
Scan Status:
In-progress
Reliance Industries Limited Company CyberSecurity Posture
ril.com
Our motto “Growth is Life” aptly captures the ever-evolving spirit of Reliance. Our activities span hydrocarbon exploration and production, petroleum refining and marketing, petrochemicals, retail, and telecommunications. In each of these areas, we are committed to innovation-led, exponential growth. Our vision has pushed us to achieve global leadership in many of our businesses – including our position as the largest polyester yarn and fiber producer in the world. Reliance Industries Limited is a Fortune 500 company and the largest private sector corporation in India. As Reliance sets sights on even more ambitious goals, we remain inspired and guided by the story and philosophy of our founder chairman Dhirubhai Ambani. Hailing from modest means, he followed his dream to create India's largest company. Reliance as an organization has adopted this ethos of converting adversity into opportunity and making the impossible possible by challenging conventional wisdom. Our ultimate aim has always been – and will always be – to touch the lives of people in a positive way
Reliance Industries Limited A.I CyberSecurity Scoring
RIL Risk Score (AI oriented)Between 800 and 849
RIL
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
RIL Global Score (TPRM)XXXX
RIL
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
RIL Company CyberSecurity News & History
Past Incidents
3
Attack Types
2
Jio
Breach
Rankiteo Explanation
Attack threatening the organization’s existence
Description: The largest breach of personal data in Indian history involved the exposure of personal information belonging to around 120 million users of the Indian corporation Reliance Jio. Customers of Reliance Jio can now look for their identifying information by entering their Reliance Jio number into the Magicapk.com website. Although the website is no longer available, numerous users attested to the accuracy of the information. Names, email addresses, phone numbers, circle-Ids, SIM activation dates and times, and, for some users, Aadhaar numbers are among the stolen data. Reliance Jio issued a statement disputing the data theft and stating that it doesn't seem like the stolen data is real.
Jio
Data Leak
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: India’s largest cell network Jio, a subsidiary of Reliance, launched its coronavirus self-test symptom checker in late March, just before the Indian government imposed a strict nationwide lockdown to prevent the further spread of the coronavirus. A security lapse exposed one of the symptom checker’s core databases to the internet without a password. The database contains millions of logs and records starting April 17 through to the time that the database was pulled offline. Although the server contained a running log of website errors and other system messages, it also ingested vast numbers of user-generated self-test data. Each self-test was logged in the database and included a record of who took the test — such as “self” or a relative, their age, and their gender. The data also included the person’s user agent, a small snippet of information about the user’s browser version, and the operating system often used to load the website properly but can also be used to track a user’s online activity. Some of the records also contained the user’s precise location, but only if the user allowed the symptom checker access to their browser or phone’s location data. Most of the location data were clustered around major cities, such as Mumbai and Pune. TechCrunch also found users in the United Kingdom and North America.
Jio
Data Leak
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: Over 120 million Reliance Jio users' data appeared to have been compromised in what appeared to be India's biggest data breach, according to a bland website called magicapk. The website disclosed information like first and surname names, phone numbers, email addresses, circles, SIM activation dates, and even Aadhaar numbers. They investigated and assured to the customer that customer details cannot be shared without their consent.
RIL Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for RIL
Incidents vs Oil and Gas Industry Average (This Year)
No incidents recorded for Reliance Industries Limited in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Reliance Industries Limited in 2025.
Incident Types RIL vs Oil and Gas Industry Avg (This Year)
No incidents recorded for Reliance Industries Limited in 2025.
Incident History — RIL (X = Date, Y = Severity)
RIL cyber incidents detection timeline including parent company and subsidiaries
RIL Company Subsidiaries
Our motto “Growth is Life” aptly captures the ever-evolving spirit of Reliance. Our activities span hydrocarbon exploration and production, petroleum refining and marketing, petrochemicals, retail, and telecommunications. In each of these areas, we are committed to innovation-led, exponential growth. Our vision has pushed us to achieve global leadership in many of our businesses – including our position as the largest polyester yarn and fiber producer in the world. Reliance Industries Limited is a Fortune 500 company and the largest private sector corporation in India. As Reliance sets sights on even more ambitious goals, we remain inspired and guided by the story and philosophy of our founder chairman Dhirubhai Ambani. Hailing from modest means, he followed his dream to create India's largest company. Reliance as an organization has adopted this ethos of converting adversity into opportunity and making the impossible possible by challenging conventional wisdom. Our ultimate aim has always been – and will always be – to touch the lives of people in a positive way
Loading...
RIL Similar Companies
Marathon Petroleum Corporation
Marathon Petroleum Corporation (MPC) is a leading, integrated, downstream and midstream energy company headquartered in Findlay, Ohio. The company operates the nation's largest refining system. MPC's marketing system includes branded locations across the United States, including Marathon brand retai
Oil and Natural Gas Corporation Ltd
Maharatna ONGC is the largest producer of crude oil and natural gas in India, contributing around 70 per cent of Indian domestic production. The crude oil is the raw material used by downstream companies like IOC, BPCL, HPCL to produce petroleum products like Petrol, Diesel, Kerosene, Naphtha, Cooki
RussNeft
ОАО Oil and Gas Company «RussNeft» came into existence in September 2002 . The structure of OAO NK “RussNeft” counts 24 upstream enterprises, 2 refineries, its own distribution net of gas filling stations. Geographic reach of “RussNeft” covers 12 regions of Russia and CIS: Khanty-Mansi Autonomous
aramco
We’re a leading producer of the energy and chemicals that drive global commerce and enhance the daily lives of people around the globe by continuing delivering an uninterrupted supply of energy to the world. Our resilience and agility has built one of the world’s largest integrated energy and chemi
We are one of the world's leading energy producers, and a primary catalyst for Abu Dhabi’s growth and diversification. We operate across the entire hydrocarbon value chain, through a network of fully-integrated businesses, with interests that range from exploration, production, storage, refining a
Hindustan Petroleum Corporation Limited
Hindustan Petroleum Corporation Limited (HPCL) is a Maharatna Central Public Sector Enterprise (CPSE) and a S&P Global Platts Top 250 Global Energy Company. HPCL has a strong presence in downstream hydrocarbon sector of the country with a sizable share in petroleum product marketing and also has bus
En YPF, tenemos un Plan 4x4 para convertirnos en una compañía de clase mundial y lograr transformarnos en grandes exportadores de hidrocarburos. Nuestros cuatro pilares son: la aceleración de la producción de petróleo en Vaca Muerta, el activo más importante que tiene nuestro país; la disciplina f
Chevron
Our greatest resource is our people. Their ingenuity, creativity and collaboration have met the complex challenges of energy’s past. Together, we’ll take on the future. We support the LinkedIn Terms of Use (User Agreement), and we expect visitors to our page to do the same. We encourage open, liv
Besmindo Group
Besmindo Group is a leader in providing new tool joints; repair & redress of tool joints, pup joints, drill pipes, threads for tool joints and OCTG tubing. The mission is to continually provide these and other services by promoting a reputation for excellence and value while fully anticipating, then
.png)
RIL CyberSecurity News
November 27, 2025 07:29 AM
A comprehensive list of 2025 tech layoffs
A complete list of all the known layoffs in tech, from Big Tech to startups, broken down by month throughout 2024 and 2025.
November 27, 2025 02:55 AM
Reliance Industries’ mkt valuation hits Rs 21L cr mark
New Delhi: Shares of Reliance Industries Ltd on Wednesday climbed 2 per cent, taking its market valuation to Rs 21 lakh crore.
November 24, 2025 07:01 AM
Technological self-reliance: a pillar of national digital sovereignty
Cyberspace has become a new domain of national sovereignty. However, alongside its positive aspects, the rising wave of cyberattacks and the...
November 07, 2025 08:00 AM
BlueCloud Softech Solutions Partners with BlackDice Cyber for AI-Driven 5G Cybersecurity
Blue Cloud Softech Solutions has signed a Letter of Intent with BlackDice Cyber Ltd to co-develop AI-based cybersecurity solutions for 5G...
November 04, 2025 08:00 AM
Cyber Security Salaries, Jobs, and Career Growth in 2026
Cybersecurity has become essential to every company's sustainability, security, and growth strategy in today's digital world.
October 24, 2025 07:00 AM
Trump’s sanctions on Russian oil: How Reliance, Nayara Energy earnings will be hit - explained
India Business News: US sanctions on Russia's Rosneft and Lukoil are poised to impact Indian refiners Reliance Industries and Nayara Energy,...
October 24, 2025 07:00 AM
Trump sanctions to hit India: Will New Delhi's crude oil imports from Russia stop? Here's what analysts s
India Business News: New US sanctions on Russian oil giants Rosneft and Lukoil are prompting Indian refiners to seek more crude from the...
October 13, 2025 07:00 AM
AI, cybersecurity and software: Where the world is hiring now
Careers News: India's tech talent is crucial for global digital transformation. Demand for AI, cybersecurity, and software skills is soaring...
October 06, 2025 07:00 AM
Startups and SMEs need incentives and regulations to prioritise cybersecurity: WEF official
Startups and small and medium enterprises (SMEs) face significant challenges in prioritising cybersecurity, and addressing these requires a...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
RIL CyberSecurity History Information
Official Website of Reliance Industries Limited
The official website of Reliance Industries Limited is http://www.ril.com.
Reliance Industries Limited’s AI-Generated Cybersecurity Score
According to Rankiteo, Reliance Industries Limited’s AI-generated cybersecurity score is 823, reflecting their Good security posture.
How many security badges does Reliance Industries Limited’ have ?
According to Rankiteo, Reliance Industries Limited currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Reliance Industries Limited have SOC 2 Type 1 certification ?
According to Rankiteo, Reliance Industries Limited is not certified under SOC 2 Type 1.
Does Reliance Industries Limited have SOC 2 Type 2 certification ?
According to Rankiteo, Reliance Industries Limited does not hold a SOC 2 Type 2 certification.
Does Reliance Industries Limited comply with GDPR ?
According to Rankiteo, Reliance Industries Limited is not listed as GDPR compliant.
Does Reliance Industries Limited have PCI DSS certification ?
According to Rankiteo, Reliance Industries Limited does not currently maintain PCI DSS compliance.
Does Reliance Industries Limited comply with HIPAA ?
According to Rankiteo, Reliance Industries Limited is not compliant with HIPAA regulations.
Does Reliance Industries Limited have ISO 27001 certification ?
According to Rankiteo,Reliance Industries Limited is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Reliance Industries Limited
Reliance Industries Limited operates primarily in the Oil and Gas industry.
Number of Employees at Reliance Industries Limited
Reliance Industries Limited employs approximately 188,212 people worldwide.
Subsidiaries Owned by Reliance Industries Limited
Reliance Industries Limited presently has no subsidiaries across any sectors.
Reliance Industries Limited’s LinkedIn Followers
Reliance Industries Limited’s official LinkedIn profile has approximately 4,426,231 followers.
NAICS Classification of Reliance Industries Limited
Reliance Industries Limited is classified under the NAICS code 211, which corresponds to Oil and Gas Extraction.
Reliance Industries Limited’s Presence on Crunchbase
Yes, Reliance Industries Limited has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/reliance-industries.
Reliance Industries Limited’s Presence on LinkedIn
Yes, Reliance Industries Limited maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/reliance.
Cybersecurity Incidents Involving Reliance Industries Limited
As of December 11, 2025, Rankiteo reports that Reliance Industries Limited has experienced 3 cybersecurity incidents.
Number of Peer and Competitor Companies
Reliance Industries Limited has an estimated 10,531 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Reliance Industries Limited ?
Incident Types: The types of cybersecurity incidents that have occurred include Data Leak and Breach.
Incident Details
Can you provide details on each incident ?
Title: Reliance Jio Data Breach
Description: Over 120 million Reliance Jio users' data appeared to have been compromised in what appeared to be India's biggest data breach.
Type: Data Breach
Title: Data Exposure of Jio's Coronavirus Self-Test Symptom Checker
Description: A security lapse exposed one of the symptom checker’s core databases to the internet without a password. The database contained millions of logs and records, including user-generated self-test data. Each self-test was logged in the database and included a record of who took the test, their age, gender, user agent, and sometimes precise location data if allowed by the user.
Type: Data Exposure
Attack Vector: Unsecured Database
Vulnerability Exploited: Lack of Password Protection
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Data Leak.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach JIO2218311022
Data Compromised: First and surname names, Phone numbers, Email addresses, Circles, Sim activation dates, Aadhaar numbers
Incident : Data Exposure JIO2219291222
Data Compromised: User-generated self-test data, User agent, Location data
Systems Affected: Symptom Checker Database
Incident : Data Breach JIO31271123
Data Compromised: Names, Email addresses, Phone numbers, Circle-ids, Sim activation dates and times, Aadhaar numbers
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personally Identifiable Information, , User-Generated Self-Test Data, User Agent, Location Data, , Names, Email Addresses, Phone Numbers, Circle-Ids, Sim Activation Dates And Times, Aadhaar Numbers and .
Which entities were affected by each incident ?
Incident : Data Breach JIO2218311022
Entity Name: Reliance Jio
Entity Type: Telecommunications
Industry: Telecommunications
Location: India
Size: Large
Customers Affected: 120 million
Incident : Data Exposure JIO2219291222
Entity Name: Jio
Entity Type: Telecommunications
Industry: Telecommunications
Location: India
Size: Large
Incident : Data Breach JIO31271123
Entity Name: Reliance Jio
Entity Type: Telecommunications Company
Industry: Telecommunications
Location: India
Customers Affected: 120 million
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach JIO2218311022
Type of Data Compromised: Personally identifiable information
Number of Records Exposed: 120 million
Sensitivity of Data: High
Personally Identifiable Information: first and surname namesphone numbersemail addressescirclesSIM activation datesAadhaar numbers
Incident : Data Exposure JIO2219291222
Type of Data Compromised: User-generated self-test data, User agent, Location data
Number of Records Exposed: Millions
Sensitivity of Data: Medium
Personally Identifiable Information: AgeGenderLocation Data
Incident : Data Breach JIO31271123
Type of Data Compromised: Names, Email addresses, Phone numbers, Circle-ids, Sim activation dates and times, Aadhaar numbers
Number of Records Exposed: 120 million
References
Where can I find more information about each incident ?
Incident : Data Breach JIO2218311022
Source: magicapk
Incident : Data Exposure JIO2219291222
Source: TechCrunch
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: magicapk, and Source: TechCrunch.
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Exposure JIO2219291222
Root Causes: Lack of Password Protection on Database
Additional Questions
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were first and surname names, phone numbers, email addresses, circles, SIM activation dates, Aadhaar numbers, , User-generated self-test data, User Agent, Location Data, , Names, Email addresses, Phone numbers, Circle-Ids, SIM activation dates and times, Aadhaar numbers and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Phone numbers, Location Data, User Agent, SIM activation dates, Circle-Ids, Names, Email addresses, first and surname names, Aadhaar numbers, SIM activation dates and times, User-generated self-test data, phone numbers, email addresses and circles.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 240.0M.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are TechCrunch and magicapk.
.png)
Latest Global CVEs (Not Company-Specific)
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Description
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
Risk Information
cvss3
Base: 8.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
Description
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Risk Information
cvss3
Base: 5.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=reliance' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
