Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
AWS for Healthcare & Life Sciences

AWS for Healthcare & Life Sciences Vendor Cyber Rating & Cyber Score

amazon.com

AWS is your source for health innovation, connecting you with the data, solutions, and partners you need to speed time to discovery, improve patient and clinician experiences, and provide equitable access to care. We are committed to helping healthcare and life sciences organizations leverage the latest technology breakthroughs like generative AI, in a responsible, compliant, and secure manner. And, with purpose-built services, like AWS HealthLake and AWS HealthOmics, you can spend more time and resources on what matters most — improving patient outcomes. Discover why AWS is the trusted cloud for healthcare and life sciences.


AHLS A.I CyberSecurity Scoring

AHLS
Company Information
Website:https://aws.amazon.com/health/
Employees number:None
Number of followers:13,247
NAICS:5415
Industry Type:IT Services and IT Consulting
Homepage:amazon.com
AHLS Risk Score (AI oriented)
Between 700 and 749
logo
AHLSIT Services and IT Consulting
Updated:
15/05/2026
738/1000
Moderate
Ba
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
AHLS Global Score (TPRM)
xxxx
logo
AHLSIT Services and IT Consulting
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

AHLS
AHLSModerate
Current Score
738Ba (MODERATE)
01000
1 incidents
-17 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
740Before Incident
JUNE 2026
739Before Incident
MAY 2026
755Before Incident
Cyber Attack
15 May 2026AHLS
node-ipc and AWS: 822K-Download node-ipc Package Compromised in Supply Chain Breach

Sophisticated Supply Chain Attack Targets Popular npm Package node-ipc

738After Incident
CRITICAL-17
AWSSOC1778833973
Sophisticated Supply Chain Attack Targets Popular npm Package *node-ipc* A widely used npm package, node-ipc downloaded over 822,000 times weekly has been weaponized in a supply chain attack, exposing JavaScript developers to credential theft and backdoor access. Security researchers at Socket identified malicious versions (9.1.6, 9.2.3, and 12.0.1) of the package, which were published on May 14, 2026, shortly before detection. Unlike typical npm attacks, this campaign embedded malware directly into the package’s CommonJS entry point (node-ipc.cjs), executing automatically upon requiring the library. The ESM version remained unaffected, limiting exposure to applications using `require("node-ipc")`. The obfuscated malware conducts system fingerprinting, harvesting sensitive data including cloud credentials (AWS, Azure, GCP, OCI), SSH keys, Git tokens, Kubernetes/Docker configs, .env files, and CI/CD secrets before compressing and encrypting it into a `.tar.gz` archive at `/tmp/nt-<pid>/`. Exfiltration occurs via covert DNS TXT queries to attacker-controlled domains (sh.azurestaticprovider[.]net, bt.node[.]js), evading standard network monitoring by splitting data into small chunks. Investigators traced the attack to a hijacked npm maintainer account (atiertant), where an expired email domain allowed credential resets without breaching npm’s infrastructure. This tactic underscores a growing risk: dormant maintainer accounts as silent entry points for supply chain attacks. The incident follows node-ipc’s prior involvement in a 2022 geo-targeted malware campaign, raising concerns about repeated compromise or deliberate reintroduction. Security teams are advised to monitor DNS logs for unusual TXT query bursts and block listed domains. Indicators of Compromise (IOCs): - Malicious packages: [email protected], 9.2.3, 12.0.1 - Exfiltration domains: sh.azurestaticprovider[.]net, bt.node[.]js - DNS patterns: xh., xd., xf.* subdomains - Temp file path: `/tmp/nt-<pid>/<machineHex>.tar.gz` - Anomalous timestamp: October 26, 1985 (file artifacts)
INCIDENT DETAILS -
TYPE
Supply Chain Attack
MOTIVATION
Credential theft, backdoor access, data exfiltration
IMPACT
Data Compromised: Cloud credentials (AWS, Azure, GCP, OCI), SSH keys, Git tokens, Kubernetes/Docker configs, .env files, CI/CD secretsSystems Affected: JavaScript applications using `require("node-ipc")`Operational Impact: Potential unauthorized access to cloud environments and CI/CD pipelinesBrand Reputation Impact: High (repeated compromise of *node-ipc* package)Identity Theft Risk: High (exfiltration of PII and credentials)
DATA BREACH
Cloud credentialsSSH keysGit tokensKubernetes/Docker configs.env filesCI/CD secretsSensitivity Of Data: High (credentials, secrets, PII)Data Exfiltration: Yes (via covert DNS TXT queries)Data Encryption: Yes (compressed and encrypted into .tar.gz).envconfig filesSSH keysPersonally Identifiable Information: Potential (credentials, tokens)
APRIL 2026
755Before Incident
MARCH 2026
755Before Incident
FEBRUARY 2026
755Before Incident
JANUARY 2026
755Before Incident
DECEMBER 2025
755Before Incident
NOVEMBER 2025
755Before Incident
OCTOBER 2025
755Before Incident
SEPTEMBER 2025
755Before Incident
AUGUST 2025
755Before Incident

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for AHLS ?
?
What was AHLS's A.I Rankiteo Cyber Score in June 2026 ?
?
What was AHLS's A.I Rankiteo Cyber Score in May 2026 ?
?
What was AHLS's A.I Rankiteo Cyber Score in April 2026 ?
?
What was AHLS's A.I Rankiteo Cyber Score in March 2026 ?
?
What was AHLS's A.I Rankiteo Cyber Score in February 2026 ?
?
What was AHLS's A.I Rankiteo Cyber Score in January 2026 ?
?
What was AHLS's A.I Rankiteo Cyber Score in December 2025 ?
?
What was AHLS's A.I Rankiteo Cyber Score in November 2025 ?
?
What was AHLS's A.I Rankiteo Cyber Score in October 2025 ?
?
What was AHLS's A.I Rankiteo Cyber Score in September 2025 ?
?
What was AHLS's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on AHLS's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with AHLS ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view AHLS's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?
AWS for Healthcare & Life Sciences Cyber Scoring History | Rankiteo