What is the official website of Custy ?

The official website of Custy is https://http://www.custy.com.

What is Custy's cybersecurity risk score?

Custy has an AI-generated cybersecurity risk score of 752 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Custy experienced?

According to Rankiteo, Custy currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Custy been affected by any supply chain cyber incidents ?

According to Rankiteo, Custy has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Custy have SOC 2 Type 1 certification ?

According to Rankiteo, Custy is not certified under SOC 2 Type 1.

Does Custy have SOC 2 Type 2 certification ?

According to Rankiteo, Custy does not hold a SOC 2 Type 2 certification.

Does Custy comply with GDPR ?

According to Rankiteo, Custy is not listed as GDPR compliant.

Does Custy have PCI DSS certification ?

According to Rankiteo, Custy does not currently maintain PCI DSS compliance.

Does Custy comply with HIPAA ?

According to Rankiteo, Custy is not compliant with HIPAA regulations.

Does Custy have ISO 27001 certification ?

According to Rankiteo,Custy is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Custy operate in ?

Custy operates primarily in the Software Development industry.

How many employees does Custy have ?

Custy employs approximately 79 people worldwide.

Does Custy own any subsidiaries ?

Custy presently has no subsidiaries across any sectors.

How many LinkedIn followers does Custy have ?

Custy's official LinkedIn profile has approximately 2,704 followers.

What is the NAICS classification code for Custy ?

Custy is classified under the NAICS code 5112, which corresponds to Software Publishers.

Does Custy have a Crunchbase profile ?

No, Custy does not have a profile on Crunchbase.

Does Custy have a LinkedIn profile ?

Yes, Custy maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/custy-general.

How many cybersecurity incidents has Custy experienced ?

As of June 22, 2026, Rankiteo reports that Custy has not experienced any cybersecurity incidents.

How many peer or competitor companies does Custy have ?

Custy has an estimated 30,142 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Custy

Boost Score +25 with badge (5 left)

752

/1000

Fair

777

/1000

Fair

Custy Vendor Cyber Rating & Cyber Score

custy.com

Add Your Compliance Badge

Custy est un acteur majeur du développement de solutions informatiques et de services spécialisés, dédiés au secteur de l’assurance. Nos solutions aident les courtiers, les grossistes-délégataires et les assureurs à créer les conditions favorables à leur transformation pour devenir et rester leaders de leur marché.

Custy A.I CyberSecurity Scoring

Scoring History

Custy

Custy CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

Custy Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Custy

Incidents vs Software Development Industry Avg (This Year)

No incidents recorded for Custy in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Custy in 2026.

Incident Types Custy vs Software Development Industry Avg (This Year)

No incidents recorded for Custy in 2026.

Incident History - Custy (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Custy Subsidiaries

Custy

Software Development

Website: https://http://www.custy.com

Company Size: 79

Groupe BurrusInsurance

DIOTInsurance

AFI-ESCAInsurance

Magnacarta GroupFinancial Services

AFI ESCA ITALIAInsurance

OCSO Groupe Diot-SiaciInsurance

Diot-Siaci Outre-MerInsurance

Groupe Burrus TechnologiesIT Services and IT Consulting

Afi Esca Belgique - BelgiëInsurance

Diot Siaci Est / Envergure ConseilInsurance

Qualibroker-Swiss Risk & Care AGInsurance

GBC MountainInsurance

AVANTAGES SAMInsurance

LSN AssurancesInsurance

CABINET JALOUNEIXInsurance

DIOT MéditerranéeInsurance

Loading…

Custy Similar Companies

Infor

infor.com

Infor is a global leader in business cloud software products for companies in industry specific markets. Infor builds complete industry suites in the cloud and efficiently deploys technology that puts the user experience first, leverages data science, and integrates easily into existing systems. Over 60,000 organizations worldwide rely on Infor to help overcome market disruptions and achieve business-wide digital transformation. Here are some key insights: • 60,000+ customers • 100+ offices • 1,700+ support experts • 2,000+ partners • 17,000+ employees • 175+ countries where customers are located • 15,000+ cloud customers • 40+ countries with Infor offices

Red Hat

redhat.com

Red Hat is the world’s leading provider of enterprise open source solutions, using a community-powered approach to deliver high-performing Linux, hybrid cloud, edge, and Kubernetes technologies. We hire creative, passionate people who are ready to contribute their ideas, help solve complex problems, and make an impact. Opportunities are open. Join us.

Lazada

lazada.com

About Lazada Group Founded in 2012, Lazada Group is the leading eCommerce platform in Southeast Asia. We are accelerating progress in Indonesia, Malaysia, the Philippines, Singapore, Thailand and Vietnam through commerce and technology. With the largest logistics and payments networks in the region, Lazada is a part of our consumers’ daily lives in the region and we aim to serve 300 million shoppers by 2030. Since 2016, Lazada is the Southeast Asia flagship platform of the Alibaba Group powered by its cutting-edge technology infrastructure.

IDEMIA

cb idemia.com

IDEMIA Secure Transactions (IST) is a leading provider of payment, connectivity, and cybersecurity solutions, serving billions of people worldwide. With decades of expertise in cryptography and credential issuance, IST is trusted by over 2000 financial institutions, mobile operators, automotive manufacturers, and IoT providers worldwide. IST is a division of IDEMIA Group. IDEMIA Public Security, another division of IDEMIA Group, is the premium provider of convenient and trusted biometric-based solutions, transforming public and private organizations across the globe. Follow them here: https://www.linkedin.com/company/idemia-public-security/

Airbnb

airbnb.com

Airbnb was born in 2007 when two hosts welcomed three guests to their San Francisco home, and has since grown to over 5 million hosts who have welcomed over 2 billion guest arrivals in almost every country across the globe. Every day, hosts offer unique stays, experiences and services that make it possible for guests to connect with communities in a more authentic way.

Daraz

cb daraz.com

Founded in 2015, Daraz is the leading e-commerce platform in South Asia with operations in Pakistan, Bangladesh, Sri Lanka, Nepal, and Myanmar. It provides sellers and consumers with cutting-edge marketplace technology, targeting a rapidly growing region of over 500 million people. By building an integrated infrastructure covering e-commerce, logistics, payment and financial services, the company aims to deliver an immersive, personalized shopping experience and uplift South Asian communities through the power of commerce. Daraz has consistently invested in building an e-commerce ecosystem in South Asia through advancements in technology, logistics and digital payments. As digital penetration and consumer awareness have surged, the region is now ready for a transformative leap. Leveraging new-age advancements such as AI, Daraz is poised to further enhance the platform’s efficiency to enable a seamless experience for its consumers and sellers. Visit https://www.daraz.com/ to learn more.

Bosch Global Software Technologies

bosch-softwaretechnologies.com

With our unique ability to offer end-to-end solutions that connect the three pillars of IoT - Sensors, Software, and Services, we enable businesses to move from the traditional to the digital, or improve businesses by introducing a digital element in their products and processes. Now more than ever, companies across the world are becoming rapidly aware of the potential and impact of modern-day digital technologies on customers, people, and organisational processes. We aim to empower and translate this realisation into a new reality for enterprises, leveraging our in-depth understanding of global business complexities, the risk of disruption that digital technologies bring, and the technology thought leadership that we have built over decades of experience at Bosch. Founded in 1997, we are a 100% owned subsidiary of Robert Bosch GmbH, with over 35,000 associates across the globe. [Data protection notice: www.bosch-softwaretechnologies.com/en/terms-of-use/data-protection-notice/ ]

Microsoft

microsoft.com

Every company has a mission. What's ours? To empower every person and every organization to achieve more. We believe technology can and should be a force for good and that meaningful innovation contributes to a brighter world in the future and today. Our culture doesn’t just encourage curiosity; it embraces it. Each day we make progress together by showing up as our authentic selves. We show up with a learn-it-all mentality. We show up cheering on others, knowing their success doesn't diminish our own. We show up every day open to learning our own biases, changing our behavior, and inviting in differences. Because impact matters. Microsoft operates in 190 countries and is made up of approximately 228,000 passionate employees worldwide.

Booking.com

booking.com

A career at Booking.com is all about the journey, helping you explore new challenges in a place where you can be your best self. With plenty of exciting twists, turns and opportunities along the way. We’ve always been pioneers, on a mission to shape the future of travel through cutting edge technology, to make it easier for everyone to enjoy amazing experiences wherever they go. Under a desert sky, or in the heart of a bustling city. Discovering the perfect hideaway, or the perfect paella. When you join us, you’ll be part of a community where taking a different path and trying something new is celebrated and supported. And where making a difference counts. We’re determined to make the world of travel more sustainable, more accessible, and more inclusive, to create a positive impact on a global scale. That’s why we’re always looking for people who search for better solutions, the ones eager to stray off the beaten path to find new ways of doing things. Because at Booking.com it’s more than a job, it’s a journey we’re on together.

Loading…

NEWS

Custy CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-56355

SUMMARY

GNU Savannah Administration Savane through 3.17 uses untrusted data as part of authorization.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 3.7)

cvss3

Base Score: 3.7

Complexity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.2

REFERENCES

CVE-2026-56347

SUMMARY

AVideo TopMenu plugin through version 26.0 contains a stored cross-site scripting vulnerability in menu item rendering due to missing output encoding of icon classes, URLs, and text labels. Attackers can inject malicious JavaScript through unescaped menu item fields that execute for all site visitors, potentially stealing session cookies or performing unauthorized actions.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.1)

cvss3

Base Score: 6.1

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

2.7

Exploitability

2.8

REFERENCES

CVE-2026-56346

SUMMARY

AVideo through version 25.0 contains an authentication bypass vulnerability in the decryptMessage.json.php endpoint that allows unauthenticated users to decrypt PGP messages. Remote attackers can submit private keys, ciphertext, and passphrases to perform server-side decryption without credentials, exposing key material to logs and enabling resource exhaustion attacks.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.5)

cvss3

Base Score: 6.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

2.5

Exploitability

3.9

REFERENCES

CVE-2026-56345

SUMMARY

AVideo through 29.0 contains an authorization bypass vulnerability in the Meet plugin's uploadRecordedVideo.json.php endpoint that derives the target users_id from the uploaded filename without verification. An attacker with knowledge of the Meet shared secret can craft a malicious file upload with a filename containing an arbitrary users_id to invoke passwordless User->login() and establish an authenticated session as any user including admin. Attackers can obtain the Meet shared secret through path-traversal vulnerabilities or timing attacks against checkToken.json.php, then POST a crafted file to uploadRecordedVideo.json.php with a filename like '1-anything.mp4' to hijack admin sessions and gain full account takeover.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 8.1)

cvss3

Base Score: 8.1

Complexity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.2

Complexity: HIGH

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.2

REFERENCES

CVE-2026-56342

SUMMARY

AVideo through version 27.0 contains a server-side request forgery vulnerability in plugin/Live/test.php that allows authenticated administrators to read arbitrary URLs via the statsURL parameter, which lacks isSSRFSafeURL() validation and accepts requests to private IP ranges and cloud metadata endpoints. Attackers can exploit this by crafting requests to internal services, cloud metadata endpoints like 169.254.169.254, and localhost to retrieve sensitive information including IAM credentials, internal service responses, and network configuration details.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.8)

cvss3

Base Score: 6.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

cvss4

Base Score: 6.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

2.3

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…