Roxor Gaming
Company Details
Linkedin ID:
roxor-gaming
Website:
Employees number:
48
Number of followers:
3,128
NAICS:
713
Industry Type:
Homepage:
roxorgaming.com
IP Addresses:
0
Company ID:
ROX_1032680
Scan Status:
In-progress
Roxor Gaming Company CyberSecurity Posture
roxorgaming.com
Roxor Gaming was formed in September 2019 as a B2B content supplier. We may seem relatively new to the industry, but Roxor Gaming has built casino content for over 20 years as part of Gamesys (a Ballys’ Corporation Company). As a result, we already have the history, the scale, and market-leading brands. We enjoy entertaining but consider ourselves more than just an average games provider! Our ecosystem makes our games quite simply the most rewarding available in the market today. Thanks to our strong heritage, we have a unique understanding of what makes a great player experience.
Roxor Gaming A.I CyberSecurity Scoring
Roxor Gaming Risk Score (AI oriented)Between 750 and 799
Roxor Gaming
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Roxor Gaming Global Score (TPRM)XXXX
Roxor Gaming
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Roxor Gaming Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Aristocrat Technologies, Inc.
Vulnerability
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Maine Office of the Attorney General reported a data breach involving Aristocrat Technologies, Inc. on September 20, 2023. The breach occurred between May 29 and May 31, 2023, due to a zero-day vulnerability in MOVEit Transfer software, affecting 7,200 individuals' personal information, including Social Security numbers. Identity theft protection services for 24 months through Experian IdentityWorks were offered to the affected individuals.
Roxor Gaming Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Roxor Gaming
Incidents vs Gambling Facilities and Casinos Industry Average (This Year)
No incidents recorded for Roxor Gaming in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Roxor Gaming in 2025.
Incident Types Roxor Gaming vs Gambling Facilities and Casinos Industry Avg (This Year)
No incidents recorded for Roxor Gaming in 2025.
Incident History — Roxor Gaming (X = Date, Y = Severity)
Roxor Gaming cyber incidents detection timeline including parent company and subsidiaries
Roxor Gaming Company Subsidiaries
Roxor Gaming was formed in September 2019 as a B2B content supplier. We may seem relatively new to the industry, but Roxor Gaming has built casino content for over 20 years as part of Gamesys (a Ballys’ Corporation Company). As a result, we already have the history, the scale, and market-leading brands. We enjoy entertaining but consider ourselves more than just an average games provider! Our ecosystem makes our games quite simply the most rewarding available in the market today. Thanks to our strong heritage, we have a unique understanding of what makes a great player experience.
Loading...
Roxor Gaming Similar Companies
Caesars Entertainment joins two successful gaming leaders, Caesars Entertainment and Eldorado Resorts, who have come together to create the largest and most diversified collection of destinations across the U.S. Boasting many of the world’s most prestigious gaming brands, including Caesars Palace®,
Virginia Lottery
At the Virginia Lottery, we take playing seriously. Fun matters. Excitement matters. And so does the education of Virginia's youngest residents. It's the reason we play so enthusiastically. Every time you scratch a ticket or pick your numbers for the big jackpot, you are creating winners in educatio
Metropolitan Gaming
Metropolitan Gaming brands in in the UK include the Metropolitan Casino in Mayfair, Empire Casino, The Sportsman, Park Lane Club London, The Rendezvous (Brighton), Manchester235, and Alea Casinos (Nottingham and Glasgow). International properties include three casinos in Egypt. The Metropolitan po
Golden Entertainment, Inc.
Golden Entertainment owns and operates a diversified entertainment platform, consisting of a portfolio of gaming and hospitality assets that focus on casino and branded tavern operations. Golden Entertainment owns eight casinos and 71 gaming taverns in Nevada, operating over 5,500 slots, nearly 100
Playersoft
PlayerSoft makes software products for the casino and hospitality industry. Our products are the outcome of years of firsthand experience dealing with software and technology products previously offered in the casino industry. At Playersoft we see an opportunity to fulfill what other vendors cannot,
Beau Rivage Resort & Casino
Southern hospitality and world-class amenities come together at Beau Rivage. Our 24-hour casino features non-stop gaming action and the latest table games and slot machines. Our 1740 elegantly appointed guest rooms, including 95 luxurious suites, offer panoramic views of the Gulf Coast or the back b
.png)
Roxor Gaming CyberSecurity News
September 26, 2022 07:00 AM
Aristocrat Leisure Limited to Acquire Roxor Gaming
Aristocrat Leisure Limited announced it agreed to acquire the leading B2B online Real Money Gaming (RMG) supplier, Roxor Gaming.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Roxor Gaming CyberSecurity History Information
Official Website of Roxor Gaming
The official website of Roxor Gaming is http://www.roxorgaming.com.
Roxor Gaming’s AI-Generated Cybersecurity Score
According to Rankiteo, Roxor Gaming’s AI-generated cybersecurity score is 764, reflecting their Fair security posture.
How many security badges does Roxor Gaming’ have ?
According to Rankiteo, Roxor Gaming currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Roxor Gaming have SOC 2 Type 1 certification ?
According to Rankiteo, Roxor Gaming is not certified under SOC 2 Type 1.
Does Roxor Gaming have SOC 2 Type 2 certification ?
According to Rankiteo, Roxor Gaming does not hold a SOC 2 Type 2 certification.
Does Roxor Gaming comply with GDPR ?
According to Rankiteo, Roxor Gaming is not listed as GDPR compliant.
Does Roxor Gaming have PCI DSS certification ?
According to Rankiteo, Roxor Gaming does not currently maintain PCI DSS compliance.
Does Roxor Gaming comply with HIPAA ?
According to Rankiteo, Roxor Gaming is not compliant with HIPAA regulations.
Does Roxor Gaming have ISO 27001 certification ?
According to Rankiteo,Roxor Gaming is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Roxor Gaming
Roxor Gaming operates primarily in the Gambling Facilities and Casinos industry.
Number of Employees at Roxor Gaming
Roxor Gaming employs approximately 48 people worldwide.
Subsidiaries Owned by Roxor Gaming
Roxor Gaming presently has no subsidiaries across any sectors.
Roxor Gaming’s LinkedIn Followers
Roxor Gaming’s official LinkedIn profile has approximately 3,128 followers.
Roxor Gaming’s Presence on Crunchbase
No, Roxor Gaming does not have a profile on Crunchbase.
Roxor Gaming’s Presence on LinkedIn
Yes, Roxor Gaming maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/roxor-gaming.
Cybersecurity Incidents Involving Roxor Gaming
As of November 28, 2025, Rankiteo reports that Roxor Gaming has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Roxor Gaming has an estimated 896 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Roxor Gaming ?
Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.
How does Roxor Gaming detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with experian identityworks..
Incident Details
Can you provide details on each incident ?
Title: Data Breach at Aristocrat Technologies, Inc.
Description: The Maine Office of the Attorney General reported a data breach involving Aristocrat Technologies, Inc. on September 20, 2023. The breach occurred between May 29 and May 31, 2023, due to a zero-day vulnerability in MOVEit Transfer software, affecting 7,200 individuals' personal information, including Social Security numbers. Identity theft protection services for 24 months through Experian IdentityWorks were offered to the affected individuals.
Date Detected: 2023-09-20
Date Publicly Disclosed: 2023-09-20
Type: Data Breach
Attack Vector: Zero-day vulnerability
Vulnerability Exploited: MOVEit Transfer software
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach ARI515072525
Data Compromised: Social security numbers
Identity Theft Risk: High
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Social Security Numbers and .
Which entities were affected by each incident ?
Incident : Data Breach ARI515072525
Entity Name: Aristocrat Technologies, Inc.
Entity Type: Company
Industry: Technology
Customers Affected: 7200
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach ARI515072525
Third Party Assistance: Experian Identityworks.
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through Experian IdentityWorks, .
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach ARI515072525
Type of Data Compromised: Social security numbers
Number of Records Exposed: 7200
Sensitivity of Data: High
Personally Identifiable Information: Social Security numbers
References
Where can I find more information about each incident ?
Incident : Data Breach ARI515072525
Source: Maine Office of the Attorney General
Date Accessed: 2023-09-20
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Office of the Attorney GeneralDate Accessed: 2023-09-20.
Post-Incident Analysis
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Experian Identityworks, .
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2023-09-20.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2023-09-20.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Social Security numbers and .
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was experian identityworks, .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was Social Security numbers.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 720.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Maine Office of the Attorney General.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=roxor-gaming' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
