AACT
Company Details
Linkedin ID:
join-act
Website:
Employees number:
40
Number of followers:
7,136
NAICS:
81391
Industry Type:
Homepage:
joinact.org
IP Addresses:
0
Company ID:
ACT_2241918
Scan Status:
In-progress
ACT | The Alliance for Climate Transition Company CyberSecurity Posture
joinact.org
ACT leads the just, equitable and rapid transition to a clean energy future and diverse climate economy. ACT is the Alliance for Climate Transition and ACT Institute. ACT helps clean energy companies start, scale and succeed with our unique business, innovation and policy leadership. We bring together business leaders and key stakeholders to engage in influential policy discussions and business initiatives while building connections that propel the clean energy industry forward. Our results-oriented team is highly skilled at turning a clear vision into reality and effectively influencing policy to build a world-class clean energy hub in the Northeast. The New England Clean Energy Council (NECEC) was formed in late 2006 when leaders in the Massachusetts’ clean energy industry saw the need for a regional business association to convene clean energy stakeholders dedicated to growing the state and the region’s clean energy economy. In October 2015, reflecting our growing activities in New York State and the rapidly growing community of member companies doing business in New York and across New England, NECEC became the Northeast Clean Energy Council. In September 2024, NECEC rebranded to ACT (The Alliance for Climate Transition) to reflect our expanding member base and broader mission to transition to a diverse climate economy.
ACT | The Alliance for Climate Transition A.I CyberSecurity Scoring
AACT Risk Score (AI oriented)Between 750 and 799
AACT
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
AACT Global Score (TPRM)XXXX
AACT
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
AACT Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
AACT Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for AACT
Incidents vs Industry Associations Industry Average (This Year)
No incidents recorded for ACT | The Alliance for Climate Transition in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for ACT | The Alliance for Climate Transition in 2025.
Incident Types AACT vs Industry Associations Industry Avg (This Year)
No incidents recorded for ACT | The Alliance for Climate Transition in 2025.
Incident History — AACT (X = Date, Y = Severity)
AACT cyber incidents detection timeline including parent company and subsidiaries
AACT Company Subsidiaries
ACT leads the just, equitable and rapid transition to a clean energy future and diverse climate economy. ACT is the Alliance for Climate Transition and ACT Institute. ACT helps clean energy companies start, scale and succeed with our unique business, innovation and policy leadership. We bring together business leaders and key stakeholders to engage in influential policy discussions and business initiatives while building connections that propel the clean energy industry forward. Our results-oriented team is highly skilled at turning a clear vision into reality and effectively influencing policy to build a world-class clean energy hub in the Northeast. The New England Clean Energy Council (NECEC) was formed in late 2006 when leaders in the Massachusetts’ clean energy industry saw the need for a regional business association to convene clean energy stakeholders dedicated to growing the state and the region’s clean energy economy. In October 2015, reflecting our growing activities in New York State and the rapidly growing community of member companies doing business in New York and across New England, NECEC became the Northeast Clean Energy Council. In September 2024, NECEC rebranded to ACT (The Alliance for Climate Transition) to reflect our expanding member base and broader mission to transition to a diverse climate economy.
Loading...
AACT Similar Companies
Transport for London
Every day, we help millions of people to make journeys across London: By Tube, bus, tram, car, bike – and more. People don’t associate us with journeys by river, on foot or via the air, but we help with that, too. Getting people to where they need to go has been our business for over 100 years, and
Goodwill Industries is all about people working. We are North America’s leading nonprofit provider of education, training, and career services for people with disadvantages, such as welfare dependency, homelessness, and lack of education or work experience, as well as those with physical, mental an
TED Conferences
TED’s mission is to discover and champion the ideas that will shape tomorrow. Powerful ideas, powerfully presented, can move us to feel something, to think differently, to take action and create a brighter future. TED finds these powerful ideas across disciplines and around the globe, from people w
UNICEF
UNICEF works in some of the world’s toughest places, to reach the world’s most disadvantaged children. To save their lives. To defend their rights. To help them fulfill their potential. Across 190 countries and territories, we work for every child, everywhere, every day, to build a better world fo
British Council
We support peace and prosperity by building connections, understanding and trust between people in the UK and countries worldwide. We uniquely combine the UK’s deep expertise in arts and culture, education and the English language, our global presence and relationships in over 100 countries, our un
Colsubsidio
Colsubsidio es una organización privada sin ánimo de lucro, que pertenece al Sistema de Protección y Seguridad Social, su evolución ha estado marcada tanto por el reconocimiento de las personas como seres integrales con necesidades dinámicas, múltiples e interdependientes, como por las transformacio
.png)
AACT CyberSecurity News
November 15, 2025 08:00 AM
EY US - Home | Building a better working world
Our commitment to audit quality. At EY US, we are bringing our bold vision for the future of audit to life with quality at the center,...
November 04, 2025 08:00 AM
From rivalry to resilience: Geopolitics in the green transition
The world finds itself caught between fragmentation and urgency. Great power rivalries are reshaping global trade and technology flows.
September 29, 2025 07:00 AM
E&E News: EPA is about to alter Biden-era HFC rules
CLIMATEWIRE | EPA is close to revealing its plans for one of the few climate policies that hasn't yet been altered by President Donald...
September 08, 2025 07:00 AM
Major bank exits from net zero alliance a ‘significant setback’ for climate transition
The Net-Zero Banking Alliance's plans to abolish its membership structure, coupled with recent high-profile exits, are a “significant...
August 30, 2025 05:04 AM
Solar Industry Applauds Release of Final SMART 3.0 Regulations by Massachusetts Department of Energy Resources
The Solar Energy Industries Association (SEIA) is leading the transformation to a clean energy economy. Learn more at seia.org.
July 17, 2025 07:00 AM
Treaty between the United Kingdom of Great Britain and Northern Ireland and the Federal Republic of Germany on friendship and bilateral cooperation
Treaty between the United Kingdom of Great Britain and Northern Ireland and the Federal Republic of Germany on friendship and bilateral...
July 10, 2025 07:00 AM
Forging Forward: South Korea’s Proactive Cyber Defense and Strategic Cooperation with the United States
This piece explores areas of collaboration between the United States and South Korea to bolster proactive cyber defenses.
June 24, 2025 09:49 AM
Embed cybersecurity in your OT digital transformation
Discover how organizations face cybersecurity challenges in the digital transformation of operational technology. Are you ready to secure your systems?
June 17, 2025 07:00 AM
Norms in New Technological Domains: What’s Next for Japan and the United States in Cyberspace
Koichiro Komiyama examines Japan's current cybersecurity threat landscape, recent legislative reforms, and opportunities for U.S.-Japan...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
AACT CyberSecurity History Information
Official Website of ACT | The Alliance for Climate Transition
The official website of ACT | The Alliance for Climate Transition is http://www.joinact.org.
ACT | The Alliance for Climate Transition’s AI-Generated Cybersecurity Score
According to Rankiteo, ACT | The Alliance for Climate Transition’s AI-generated cybersecurity score is 761, reflecting their Fair security posture.
How many security badges does ACT | The Alliance for Climate Transition’ have ?
According to Rankiteo, ACT | The Alliance for Climate Transition currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does ACT | The Alliance for Climate Transition have SOC 2 Type 1 certification ?
According to Rankiteo, ACT | The Alliance for Climate Transition is not certified under SOC 2 Type 1.
Does ACT | The Alliance for Climate Transition have SOC 2 Type 2 certification ?
According to Rankiteo, ACT | The Alliance for Climate Transition does not hold a SOC 2 Type 2 certification.
Does ACT | The Alliance for Climate Transition comply with GDPR ?
According to Rankiteo, ACT | The Alliance for Climate Transition is not listed as GDPR compliant.
Does ACT | The Alliance for Climate Transition have PCI DSS certification ?
According to Rankiteo, ACT | The Alliance for Climate Transition does not currently maintain PCI DSS compliance.
Does ACT | The Alliance for Climate Transition comply with HIPAA ?
According to Rankiteo, ACT | The Alliance for Climate Transition is not compliant with HIPAA regulations.
Does ACT | The Alliance for Climate Transition have ISO 27001 certification ?
According to Rankiteo,ACT | The Alliance for Climate Transition is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of ACT | The Alliance for Climate Transition
ACT | The Alliance for Climate Transition operates primarily in the Industry Associations industry.
Number of Employees at ACT | The Alliance for Climate Transition
ACT | The Alliance for Climate Transition employs approximately 40 people worldwide.
Subsidiaries Owned by ACT | The Alliance for Climate Transition
ACT | The Alliance for Climate Transition presently has no subsidiaries across any sectors.
ACT | The Alliance for Climate Transition’s LinkedIn Followers
ACT | The Alliance for Climate Transition’s official LinkedIn profile has approximately 7,136 followers.
NAICS Classification of ACT | The Alliance for Climate Transition
ACT | The Alliance for Climate Transition is classified under the NAICS code 81391, which corresponds to Business Associations.
ACT | The Alliance for Climate Transition’s Presence on Crunchbase
No, ACT | The Alliance for Climate Transition does not have a profile on Crunchbase.
ACT | The Alliance for Climate Transition’s Presence on LinkedIn
Yes, ACT | The Alliance for Climate Transition maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/join-act.
Cybersecurity Incidents Involving ACT | The Alliance for Climate Transition
As of November 28, 2025, Rankiteo reports that ACT | The Alliance for Climate Transition has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
ACT | The Alliance for Climate Transition has an estimated 203 peer or competitor companies worldwide.
ACT | The Alliance for Climate Transition CyberSecurity History Information
How many cyber incidents has ACT | The Alliance for Climate Transition faced ?
Total Incidents: According to Rankiteo, ACT | The Alliance for Climate Transition has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at ACT | The Alliance for Climate Transition ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.
Risk Information
cvss4
Base: 6.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description
Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.
Description
Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=join-act' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
