SPI
Company Details
Linkedin ID:
storm-products
Website:
Employees number:
132
Number of followers:
2,371
NAICS:
None
Industry Type:
Homepage:
stormbowling.com
IP Addresses:
0
Company ID:
STO_7018711
Scan Status:
In-progress
Storm Products, Inc. Company CyberSecurity Posture
stormbowling.com
High Score Products was originally founded in 1985 by Bill Chrisman, to market a new product he had developed. Mr. Chrisman had noticed urethane bowling balls (a relatively new innovation in ball design) were porous and tended to soak the oil from the bowling lanes. The new product was marketed as U Clean / U Score Urethane Bowling Ball Cleaner™. High Score Products remained a one product company until 1991, when availability of capital and time coincided with the opportunity to manufacture bowling balls. Mr. Chrisman's experience in other industries and his long term involvement with bowling led him to believe that small quantity OEM private label manufacturing was a viable market being completely ignored by large manufactures. In the spring of 1991, Mr. Chrisman hired Keith Orton, a pioneer in manufacturing high performance urethane bowling balls, to set up a facility to manufacture bowling balls for High Score Products. The first balls were produced in August 1991 and the process of an appropriate trade name for a HSP bowling ball was begun. After several weeks of effort the STORM® name was chosen. The name offered a number of possibilities for strong graphic presentation as well as the kind of strong power image traditionally associated with bowling balls and other sports equipment. The name was also thought to have a universal quality, which would cut across cultural lines and be effective in both domestic and foreign markets. PURPOSE - TO GROW THE SPORT OF BOWLING Storm must not only hold to the highest standards of innovation, quality workmanship, and performance of its products, we must also strive to grow the sport of bowling. We must create enthusiasts! Our purpose is to continue to inspire existing bowlers and to foster and develop new bowlers. We must continue to educate pro shops on Industry best-practices to properly service their customers to insure all who choose our equipment have the best chance at positive experiences.
Storm Products, Inc. A.I CyberSecurity Scoring
SPI Risk Score (AI oriented)Between 750 and 799
SPI
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
SPI Global Score (TPRM)XXXX
SPI
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
SPI Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
SPI Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for SPI
Incidents vs Sporting Goods Industry Average (This Year)
No incidents recorded for Storm Products, Inc. in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Storm Products, Inc. in 2025.
Incident Types SPI vs Sporting Goods Industry Avg (This Year)
No incidents recorded for Storm Products, Inc. in 2025.
Incident History — SPI (X = Date, Y = Severity)
SPI cyber incidents detection timeline including parent company and subsidiaries
SPI Company Subsidiaries
High Score Products was originally founded in 1985 by Bill Chrisman, to market a new product he had developed. Mr. Chrisman had noticed urethane bowling balls (a relatively new innovation in ball design) were porous and tended to soak the oil from the bowling lanes. The new product was marketed as U Clean / U Score Urethane Bowling Ball Cleaner™. High Score Products remained a one product company until 1991, when availability of capital and time coincided with the opportunity to manufacture bowling balls. Mr. Chrisman's experience in other industries and his long term involvement with bowling led him to believe that small quantity OEM private label manufacturing was a viable market being completely ignored by large manufactures. In the spring of 1991, Mr. Chrisman hired Keith Orton, a pioneer in manufacturing high performance urethane bowling balls, to set up a facility to manufacture bowling balls for High Score Products. The first balls were produced in August 1991 and the process of an appropriate trade name for a HSP bowling ball was begun. After several weeks of effort the STORM® name was chosen. The name offered a number of possibilities for strong graphic presentation as well as the kind of strong power image traditionally associated with bowling balls and other sports equipment. The name was also thought to have a universal quality, which would cut across cultural lines and be effective in both domestic and foreign markets. PURPOSE - TO GROW THE SPORT OF BOWLING Storm must not only hold to the highest standards of innovation, quality workmanship, and performance of its products, we must also strive to grow the sport of bowling. We must create enthusiasts! Our purpose is to continue to inspire existing bowlers and to foster and develop new bowlers. We must continue to educate pro shops on Industry best-practices to properly service their customers to insure all who choose our equipment have the best chance at positive experiences.
Loading...
SPI Similar Companies
Albion Saddlemakers Co. Ltd.
Albion’s (meaning ‘Old England’) guiding principle is simple, to always deliver a supremely superior quality product, blending traditional values and artisan craftsmanship with revolutionary innovation and state of the art technology. At the heart of Albion’s success is the tremendous pride the comp
Sport Court
Champions Start Here For over 40 years, Sport Court has helped families and kids unlock their true potential. Through our 150,000 courts in more than 100 countries on all seven continents, our courts have created safe colorful places for kids to learn the values taught by sport. In fact, many
C4 Marketing and Distribution
Who We Are Charles “CJ” Cropper – Territory Manager – CJ is a recent graduate of University of Vermont who has been interning in sales throughout his college career. He now travels the New England territory executing sales presentations, merchandising, service calls, and demo days. Will Cropper– Fo
Goalsetter Systems, Inc
Manufacturer of in-ground, height adjustable basketball goal systems with the following features: * Adjust 6ft to 10ft with patented internal, compression height adjustment mechanism * Moveable with patented ground anchor system * Innovative H-Frame backboard design * Easy to assemble, no ladder
The Hockey Shop Source for Sports
Since we opened the doors 33 years ago, we’ve been dedicated to providing our customers with the best possible service and advice to help them perform at their best. What began as a local mom-and-pop store located in Surrey, British Columbia has become an international hockey superstore. And while
Excel Sports
Excel Sports opened its doors in 1988 with a vision to create a single resource where passionate cyclists can find all of the products, goods and services they require, to satisfy their needs. To this day, our original concept of offering top quality service, through hard-working and experienced sta
.png)
SPI CyberSecurity News
October 15, 2025 07:00 AM
Article | CISA orders agencies to patch vulnerabilities in F5 products exploited by state-sponsored hackers
The Cybersecurity and Infrastructure Security Agency on Wednesday ordered all federal agencies to immediately take steps to patch vulnerable...
August 21, 2025 07:00 AM
Think before you Click(Fix): Analyzing the ClickFix social engineering technique
Over the past year, Microsoft Threat Intelligence and Microsoft Defender Experts have observed the ClickFix social engineering technique...
April 08, 2025 07:00 AM
Exploitation of CLFS zero-day leads to ransomware activity
The exploit activity discovered by Microsoft targets a zero-day vulnerability in the Common Log File System (CLFS) kernel driver.
February 13, 2025 08:00 AM
Storm-2372 conducts device code phishing campaign
Microsoft Threat Intelligence Center discovered an active and successful device code phishing campaign by a threat actor we track as Storm-2372.
October 31, 2024 07:00 AM
Undeterred by the SolarWinds Storm: SEC Charges Victims of Compromised Software
The SEC on Oct. 22, 2024, announced charges against four companies for allegedly making materially misleading disclosures concerning the impact of...
October 20, 2022 04:13 PM
Microsoft Security Blog
Stay ahead of threats. Get expert insights, threat intelligence, and the latest cybersecurity reports from Security Insider.
July 03, 2021 03:43 AM
Cybersecurity Blog
Explore GreyNoise Intelligence with industry-leading analysis, product tips, and emerging research in our ongoing Cybersecurity Blog.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
SPI CyberSecurity History Information
Official Website of Storm Products, Inc.
The official website of Storm Products, Inc. is http://www.stormbowling.com.
Storm Products, Inc.’s AI-Generated Cybersecurity Score
According to Rankiteo, Storm Products, Inc.’s AI-generated cybersecurity score is 755, reflecting their Fair security posture.
How many security badges does Storm Products, Inc.’ have ?
According to Rankiteo, Storm Products, Inc. currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Storm Products, Inc. have SOC 2 Type 1 certification ?
According to Rankiteo, Storm Products, Inc. is not certified under SOC 2 Type 1.
Does Storm Products, Inc. have SOC 2 Type 2 certification ?
According to Rankiteo, Storm Products, Inc. does not hold a SOC 2 Type 2 certification.
Does Storm Products, Inc. comply with GDPR ?
According to Rankiteo, Storm Products, Inc. is not listed as GDPR compliant.
Does Storm Products, Inc. have PCI DSS certification ?
According to Rankiteo, Storm Products, Inc. does not currently maintain PCI DSS compliance.
Does Storm Products, Inc. comply with HIPAA ?
According to Rankiteo, Storm Products, Inc. is not compliant with HIPAA regulations.
Does Storm Products, Inc. have ISO 27001 certification ?
According to Rankiteo,Storm Products, Inc. is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Storm Products, Inc.
Storm Products, Inc. operates primarily in the Sporting Goods industry.
Number of Employees at Storm Products, Inc.
Storm Products, Inc. employs approximately 132 people worldwide.
Subsidiaries Owned by Storm Products, Inc.
Storm Products, Inc. presently has no subsidiaries across any sectors.
Storm Products, Inc.’s LinkedIn Followers
Storm Products, Inc.’s official LinkedIn profile has approximately 2,371 followers.
NAICS Classification of Storm Products, Inc.
Storm Products, Inc. is classified under the NAICS code None, which corresponds to Others.
Storm Products, Inc.’s Presence on Crunchbase
No, Storm Products, Inc. does not have a profile on Crunchbase.
Storm Products, Inc.’s Presence on LinkedIn
Yes, Storm Products, Inc. maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/storm-products.
Cybersecurity Incidents Involving Storm Products, Inc.
As of November 28, 2025, Rankiteo reports that Storm Products, Inc. has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Storm Products, Inc. has an estimated 364 peer or competitor companies worldwide.
Storm Products, Inc. CyberSecurity History Information
How many cyber incidents has Storm Products, Inc. faced ?
Total Incidents: According to Rankiteo, Storm Products, Inc. has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Storm Products, Inc. ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=storm-products' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
