Sore Thumb
Company Details
Linkedin ID:
sore-thumb
Website:
Employees number:
4
Number of followers:
0
NAICS:
54143
Industry Type:
Homepage:
sorethumb.co.uk
IP Addresses:
0
Company ID:
SOR_1183692
Scan Status:
In-progress
Sore Thumb Company CyberSecurity Posture
sorethumb.co.uk
What our clients have to say: Sore Thumb feels more like an extension of my team than an external agency. We have very much valued the way that Sore Thumb will go that extra mile to ensure that tight deadlines are met. Not having the overheads of some glitzy agencies who employ folk just to water plants and bring coffee ensures that pricing is extremely competitive - but don’t let the price tag put you off! Sore Thumb bring dynamic design and years of experience to the marketing mix. Jools Mackin, Communications Manager, SITA Trust You are officially the best and most efficient designer in the world! Sophie Whittle, JBP Public Relations We think you are fab ! honestly by far the best I have used for a long time. Quality of work - 10, Service - 10, Price - 10 Fiona Reece, Fiona Reece Public Relations Excellent service - always prompt, efficient and helpful - and tolerant when the client doesn’t know what they want! Gill Crane, OMSCo Tens for everything as far as Im concerned! You always turn things around so quickly and can fit jobs in even if they pop up at the last minute - nothing is too much trouble. I love working with you guys and to top it off you’re extremely reasonably priced - in fact you really should put your prices up at some point! Abby Richardson, PR and Communications I’m sure I’ve said it but until I met you I was used to working with med/large design agencies who are very creative BUT very expensive. Sore Thumb are flexible, fantastically quick turn around and always deliver. Your prices are so good - that at OMSCo I stopped asking you for a quote as I always knew your prices would be very reasonable. Rosie Palmer, Dormens Snacks Working with Sore Thumb is a pleasure. You have a creative and no nonsense approach - a rare combination - which suits us down to the ground. Price - very competitive, Service - excellent, Quality of work - excellent Anthony Durston, SITA UK
Sore Thumb A.I CyberSecurity Scoring
Sore Thumb Risk Score (AI oriented)Between 750 and 799
Sore Thumb
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Sore Thumb Global Score (TPRM)XXXX
Sore Thumb
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Sore Thumb Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
Sore Thumb Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Sore Thumb
Incidents vs Graphic Design Industry Average (This Year)
No incidents recorded for Sore Thumb in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Sore Thumb in 2025.
Incident Types Sore Thumb vs Graphic Design Industry Avg (This Year)
No incidents recorded for Sore Thumb in 2025.
Incident History — Sore Thumb (X = Date, Y = Severity)
Sore Thumb cyber incidents detection timeline including parent company and subsidiaries
Sore Thumb Company Subsidiaries
What our clients have to say: Sore Thumb feels more like an extension of my team than an external agency. We have very much valued the way that Sore Thumb will go that extra mile to ensure that tight deadlines are met. Not having the overheads of some glitzy agencies who employ folk just to water plants and bring coffee ensures that pricing is extremely competitive - but don’t let the price tag put you off! Sore Thumb bring dynamic design and years of experience to the marketing mix. Jools Mackin, Communications Manager, SITA Trust You are officially the best and most efficient designer in the world! Sophie Whittle, JBP Public Relations We think you are fab ! honestly by far the best I have used for a long time. Quality of work - 10, Service - 10, Price - 10 Fiona Reece, Fiona Reece Public Relations Excellent service - always prompt, efficient and helpful - and tolerant when the client doesn’t know what they want! Gill Crane, OMSCo Tens for everything as far as Im concerned! You always turn things around so quickly and can fit jobs in even if they pop up at the last minute - nothing is too much trouble. I love working with you guys and to top it off you’re extremely reasonably priced - in fact you really should put your prices up at some point! Abby Richardson, PR and Communications I’m sure I’ve said it but until I met you I was used to working with med/large design agencies who are very creative BUT very expensive. Sore Thumb are flexible, fantastically quick turn around and always deliver. Your prices are so good - that at OMSCo I stopped asking you for a quote as I always knew your prices would be very reasonable. Rosie Palmer, Dormens Snacks Working with Sore Thumb is a pleasure. You have a creative and no nonsense approach - a rare combination - which suits us down to the ground. Price - very competitive, Service - excellent, Quality of work - excellent Anthony Durston, SITA UK
Loading...
Sore Thumb Similar Companies
Project6 Design, Inc.
Project6 Design is an award-winning graphic design and web development firm working with tech, retail, education, and nonprofit organizations. Our strategic process helps clients express their true brand character, solve usability problems, and drive business results. Utilizing WordPress and Drupal
The Designery
The Designery, located in St. Louis, Missouri, is a creative sign company specializing in the design and fabrication of the highest quality signage available. We produce a wide array of monument signs, directories, way-finding signs, plaques, ADA signage and much, much more. Established in 1995, Th
West Coast Choppers
Parts that don’t conform to some textbook ideal of manufacturing efficiency. Bikes that come together in weeks (sometimes months), not hours. And we do it all in our shop from start to finish. Nothing is farmed out. Our bottom line is this: We make customs and custom parts the way they should be mad
White Cloud Creative Limited
White Cloud Creative provides affordable creative solutions for your business. We help start-up and small to medium sized businesses to create or improve their business image (branding). This includes logos, signage, business cards, advertising, websites, publications and much more. Each client a
Jim Kirkpatrick's Specialty Advertising Services
I design and have printed 1000's of point of sale advertising items for customer like yourself. From key chains to t-shirts and 1000's more items. Contact me to get a free information kit sent to you. I give up front estimates and a proof of you item before we print it. I also ship items to your fro
Stocks Taylor Benson
An independent, employee-owned design agency in Leicester and London. As creative problem solvers our approach is driven by strong ideas and client successes. How? We treat design like a science. Through strategy and innovation, we solve our clients' problems with design solutions that are bold, b
.png)
Sore Thumb CyberSecurity News
December 25, 2024 08:00 AM
Uruguay Cybersecurity Job Market: Trends and Growth Areas for 2024
Discover the 2024 trends, growth areas, and top cybersecurity job roles in Uruguay. Learn about certifications, educational paths,...
June 27, 2023 07:00 AM
How can hackers gain access to air-gapped computers?
A criminal armed with a quantum computer, accessible via the cloud, would now be capable of hacking air-gapped computers through the organisation's electricity...
July 19, 2019 07:00 AM
Phrases Cyber Security Professionals Need to Think Carefully About Before Using with Non-Cyber People
Tony Vizza, CISSP As awareness of information security challenges becomes more prevalent, there is an increasing chorus of people involved...
January 27, 2017 08:00 AM
Breach Notification Website LeakedSource Allegedly Raided, Shut Down
LeakedSource, a website dedicated to informing the public about data breaches, has gone offline and it has been 24 hours now since it is...
August 09, 2016 07:00 AM
What Snapchat Was Doing at Black Hat
The popular service had a booth at the annual cybersecurity conference in Las Vegas.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Sore Thumb CyberSecurity History Information
Official Website of Sore Thumb
The official website of Sore Thumb is http://www.sorethumb.co.uk.
Sore Thumb’s AI-Generated Cybersecurity Score
According to Rankiteo, Sore Thumb’s AI-generated cybersecurity score is 792, reflecting their Fair security posture.
How many security badges does Sore Thumb’ have ?
According to Rankiteo, Sore Thumb currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Sore Thumb have SOC 2 Type 1 certification ?
According to Rankiteo, Sore Thumb is not certified under SOC 2 Type 1.
Does Sore Thumb have SOC 2 Type 2 certification ?
According to Rankiteo, Sore Thumb does not hold a SOC 2 Type 2 certification.
Does Sore Thumb comply with GDPR ?
According to Rankiteo, Sore Thumb is not listed as GDPR compliant.
Does Sore Thumb have PCI DSS certification ?
According to Rankiteo, Sore Thumb does not currently maintain PCI DSS compliance.
Does Sore Thumb comply with HIPAA ?
According to Rankiteo, Sore Thumb is not compliant with HIPAA regulations.
Does Sore Thumb have ISO 27001 certification ?
According to Rankiteo,Sore Thumb is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Sore Thumb
Sore Thumb operates primarily in the Graphic Design industry.
Number of Employees at Sore Thumb
Sore Thumb employs approximately 4 people worldwide.
Subsidiaries Owned by Sore Thumb
Sore Thumb presently has no subsidiaries across any sectors.
Sore Thumb’s LinkedIn Followers
Sore Thumb’s official LinkedIn profile has approximately 0 followers.
NAICS Classification of Sore Thumb
Sore Thumb is classified under the NAICS code 54143, which corresponds to Graphic Design Services.
Sore Thumb’s Presence on Crunchbase
No, Sore Thumb does not have a profile on Crunchbase.
Sore Thumb’s Presence on LinkedIn
Yes, Sore Thumb maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/sore-thumb.
Cybersecurity Incidents Involving Sore Thumb
As of December 02, 2025, Rankiteo reports that Sore Thumb has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Sore Thumb has an estimated 2,656 peer or competitor companies worldwide.
Sore Thumb CyberSecurity History Information
How many cyber incidents has Sore Thumb faced ?
Total Incidents: According to Rankiteo, Sore Thumb has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Sore Thumb ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.11.1, vllm has a critical remote code execution vector in a config class named Nemotron_Nano_VL_Config. When vllm loads a model config that contains an auto_map entry, the config class resolves that mapping with get_class_from_dynamic_module(...) and immediately instantiates the returned class. This fetches and executes Python from the remote repository referenced in the auto_map string. Crucially, this happens even when the caller explicitly sets trust_remote_code=False in vllm.transformers_utils.config.get_config. In practice, an attacker can publish a benign-looking frontend repo whose config.json points via auto_map to a separate malicious backend repo; loading the frontend will silently run the backend’s code on the victim host. This vulnerability is fixed in 0.11.1.
Risk Information
cvss3
Base: 7.1
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Description
fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. Prior to 12.5.0, by crafting a malicious URL, an attacker could access routes that are not allowed, even though the reply.from is defined for specific routes in @fastify/reply-from. This vulnerability is fixed in 12.5.0.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 21.0.2, 20.3.15, and 19.2.17, A Stored Cross-Site Scripting (XSS) vulnerability has been identified in the Angular Template Compiler. It occurs because the compiler's internal security schema is incomplete, allowing attackers to bypass Angular's built-in security sanitization. Specifically, the schema fails to classify certain URL-holding attributes (e.g., those that could contain javascript: URLs) as requiring strict URL security, enabling the injection of malicious scripts. This vulnerability is fixed in 21.0.2, 20.3.15, and 19.2.17.
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Gin-vue-admin is a backstage management system based on vue and gin. In 2.8.6 and earlier, attackers can delete any file on the server at will, causing damage or unavailability of server resources. Attackers can control the 'FileMd5' parameter to delete any file and folder.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Portkey.ai Gateway is a blazing fast AI Gateway with integrated guardrails. Prior to 1.14.0, the gateway determined the destination baseURL by prioritizing the value in the x-portkey-custom-host request header. The proxy route then appends the client-specified path to perform an external fetch. This can be maliciously used by users for SSRF attacks. This vulnerability is fixed in 1.14.0.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=sore-thumb' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
