Acram Digital Company CyberSecurity Posture

acram.eu
ISOSOC2 Type 1SOC2 Type 2PCI DSSHIPAAGDPR

Acram Digital Studio is a Poland-based indie game developer. We specialize in creating turn-based games and top-notch digital ports of board games. Additionally, we offer a range of outsourcing services to external developers and partners. Our outsourcing capabilities encompass Full-Cycle Game Development, Co-Development, Game UI/UX Design, Nintendo Switch Porting, and Art-Outsourcing, which includes 2D, 3D, Animation, and Social Media services. To date, our team has fully developed 7 games using the Unity Engine. These games are available on multiple platforms, including iOS, Android, PC (Steam, GOG), Nintendo Switch, and Xbox—all featuring cross-platform multiplayer. We have also undertaken commissioned projects for our clients and partners. We are committed to continuous improvement, aiming to provide remarkable experiences through our products. Our mission is to deliver the finest turn-based games and meet the needs of our clients and partners with professional services. Interested in collaborating? Feel free to leave us a message at: contact(at)acram.eu

Acram Digital A.I CyberSecurity Scoring

Acram Digital

Company Details

Linkedin ID:

acram-digital

Website:

https://www.acram.eu

Employees number:

13

Number of followers:

0

NAICS:

51126

Industry Type:

Computer Games

Homepage:

acram.eu

IP Addresses:

Scan still pending

Company ID:

ACR_7240974

Scan Status:

In-progress

AI scoreAcram Digital Risk Score (AI oriented)

Between 800 and 849

https://images.rankiteo.com/companyimages/acram-digital.jpeg
Acram Digital Computer Games
Updated:
  • Powered by our proprietary A.I cyber incident model
  • Insurance preferes TPRM score to calculate premium
globalscoreAcram Digital Global Score (TPRM)

XXXX

https://images.rankiteo.com/companyimages/acram-digital.jpeg
Acram Digital Computer Games
  • Instant access to detailed risk factors
  • Benchmark vs. industry & size peers
  • Vulnerabilities
  • Findings

Acram Digital

Good
Current Score
802
A (Good)
01000
1 incidents
-2.0 avg impact

Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.

DECEMBER 2025
804
Vulnerability
15 Dec 2025 • Acram Digital: Zero-day Vulnerability in Gogs Leads to Hundreds of Compromised Servers
Critical Zero-Day Vulnerability in Gogs Leading to Remote Code Execution

**Critical Zero-Day Vulnerability in Gogs Exploited for Remote Code Execution** A severe, unpatched zero-day vulnerability in **Gogs**, a widely used self-hosted Git service, has been actively exploited in the wild, leading to remote code execution (RCE) on exposed instances. Security researchers uncovered the flaw during routine scans of internet-facing Gogs servers, revealing that attackers have already compromised hundreds of systems across diverse infrastructures. The vulnerability stems from **improper input validation** in Gogs’ codebase, allowing threat actors to send malicious payloads and execute arbitrary commands on vulnerable servers. While the flaw has not yet been assigned a **CVE identifier**, its exploitation has resulted in unauthorized access, potential data breaches, and full server takeovers. The impact is particularly concerning given Gogs’ adoption in numerous development and enterprise environments. With no official patch available, security experts urge administrators to **restrict access** to Gogs instances by placing them behind firewalls, deploying **web application firewalls (WAFs)** to block exploitation attempts, and monitoring logs for suspicious activity. Regular system audits are also recommended to detect signs of compromise. The incident underscores the risks of self-hosted services, especially when updates and security patches lag behind emerging threats. As the situation evolves, users await further guidance from the **Gogs development team** on a permanent fix. The cybersecurity community continues to track the vulnerability’s exploitation and potential long-term consequences.

802
critical -2
ACR1765814240
Incident Details -
Type
Zero-Day Exploitation
Attack Vector
Remote Code Execution
Vulnerability Exploited
Improper input validation in Gogs codebase
Impact
Data Compromised: Sensitive data Systems Affected: Hundreds of internet-facing servers Operational Impact: Unauthorized access to servers
Response
Restrict access to Gogs instances by deploying them behind a firewall Regularly audit systems for unusual activity or compromises Implement web application firewalls (WAFs) to detect and block attempts to exploit the vulnerability Monitor logs for any signs of exploitation attempts Enhanced Monitoring: Monitor logs for any signs of exploitation attempts
Data Breach
Type Of Data Compromised: Sensitive data
Lessons Learned
The exploitation of this zero-day highlights the ongoing challenges faced by organizations relying on self-hosted services. Maintaining regular updates and security patches for software is crucial in thwarting such attacks.
Recommendations
Restrict access to Gogs instances by deploying them behind a firewall Regularly audit systems for unusual activity or compromises Implement web application firewalls (WAFs) to detect and block attempts to exploit the vulnerability Monitor logs for any signs of exploitation attempts Collaborate with the cybersecurity community to facilitate faster identification and resolution of vulnerabilities in open-source projects
Post Incident Analysis
Root Causes: Improper input validation in Gogs codebase Corrective Actions: Awaiting patch from Gogs development team
References
Blog URL Source URL
NOVEMBER 2025
804
OCTOBER 2025
804
SEPTEMBER 2025
804
AUGUST 2025
804
JULY 2025
804
JUNE 2025
804
MAY 2025
804
APRIL 2025
804
MARCH 2025
804
FEBRUARY 2025
804
JANUARY 2025
804

Frequently Asked Questions

According to Rankiteo, the current A.I.-based Cyber Score for Acram Digital is 802, which corresponds to a Good rating.

According to Rankiteo, the A.I. Rankiteo Cyber Score for November 2025 was 804.

According to Rankiteo, the A.I. Rankiteo Cyber Score for October 2025 was 804.

According to Rankiteo, the A.I. Rankiteo Cyber Score for September 2025 was 804.

According to Rankiteo, the A.I. Rankiteo Cyber Score for August 2025 was 804.

According to Rankiteo, the A.I. Rankiteo Cyber Score for July 2025 was 804.

According to Rankiteo, the A.I. Rankiteo Cyber Score for June 2025 was 804.

According to Rankiteo, the A.I. Rankiteo Cyber Score for May 2025 was 804.

According to Rankiteo, the A.I. Rankiteo Cyber Score for April 2025 was 804.

According to Rankiteo, the A.I. Rankiteo Cyber Score for March 2025 was 804.

According to Rankiteo, the A.I. Rankiteo Cyber Score for February 2025 was 804.

According to Rankiteo, the A.I. Rankiteo Cyber Score for January 2025 was 804.

Over the past 12 months, the average per-incident point impact on Acram Digital’s A.I Rankiteo Cyber Score has been -2.0 points.

You can access Acram Digital’s cyber incident details on Rankiteo by visiting the following link: https://www.rankiteo.com/company/acram-digital.

You can find the summary of the A.I Rankiteo Risk Scoring methodology on Rankiteo by visiting the following link: Rankiteo Algorithm.

You can view Acram Digital’s profile page on Rankiteo by visiting the following link: https://www.rankiteo.com/company/acram-digital.

With scores of 18.5/20 from OpenAI ChatGPT, 20/20 from Mistral AI, and 17/20 from Claude AI, the A.I. Rankiteo Risk Scoring methodology is validated as a market leader.