What is the official website of CVS Health ?

The official website of CVS Health is http://CVSHealth.com.

What is CVS Health's cybersecurity risk score?

CVS Health has an AI-generated cybersecurity risk score of 683 out of 1000, indicating a Weak security posture according to Rankiteo's assessment.

How many security incidents has CVS Health experienced?

According to Rankiteo, CVS Health currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has CVS Health been affected by any supply chain cyber incidents ?

According to Rankiteo, CVS Health has been affected by a supply chain cyber incident involving Change Healthcare, with the incident ID CHA455090325.

Does CVS Health have SOC 2 Type 1 certification ?

According to Rankiteo, CVS Health is not certified under SOC 2 Type 1.

Does CVS Health have SOC 2 Type 2 certification ?

According to Rankiteo, CVS Health does not hold a SOC 2 Type 2 certification.

Does CVS Health comply with GDPR ?

According to Rankiteo, CVS Health is not listed as GDPR compliant.

Does CVS Health have PCI DSS certification ?

According to Rankiteo, CVS Health does not currently maintain PCI DSS compliance.

Does CVS Health comply with HIPAA ?

According to Rankiteo, CVS Health is not compliant with HIPAA regulations.

Does CVS Health have ISO 27001 certification ?

According to Rankiteo,CVS Health is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does CVS Health operate in ?

CVS Health operates primarily in the Hospitals and Health Care industry.

How many employees does CVS Health have ?

CVS Health employs approximately 137,169 people worldwide.

Does CVS Health own any subsidiaries ?

CVS Health presently has no subsidiaries across any sectors.

How many LinkedIn followers does CVS Health have ?

CVS Health's official LinkedIn profile has approximately 1,206,072 followers.

What is the NAICS classification code for CVS Health ?

CVS Health is classified under the NAICS code 62, which corresponds to Health Care and Social Assistance.

Does CVS Health have a Crunchbase profile ?

No, CVS Health does not have a profile on Crunchbase.

Does CVS Health have a LinkedIn profile ?

Yes, CVS Health maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/cvshealth.

How many cybersecurity incidents has CVS Health experienced ?

As of June 25, 2026, Rankiteo reports that CVS Health has experienced 6 cybersecurity incidents.

How many peer or competitor companies does CVS Health have ?

CVS Health has an estimated 33,130 peer or competitor companies worldwide.

What types of cybersecurity incidents has CVS Health faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Ransomware and Breach.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

CVS Health

Boost Score +25 with badge (5 left)

683

/1000

Weak

708

/1000

Moderate

CVS Health Vendor Cyber Rating & Cyber Score

CVSHealth.com

Add Your Compliance Badge

CVS Health is the leading health solutions company, delivering care like no one else can. We reach more people and improve the health of communities across America through our local presence, digital channels and over 300,000 dedicated colleagues. Wherever and whenever people need us, we help them with their health – whether that’s managing chronic diseases, staying compliant with their medications or accessing affordable health and wellness services in the most convenient ways. We help people navigate the health care system – and their personal health care – by simplifying health care one person, one family and one community at a time. Follow @CVSHealth on social media.

CVS Health A.I CyberSecurity Scoring

Scoring History

CVS Health

CVS Health CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Aetna, a CVS Health...

Breach

12/2025

AET1766440692

CVS Health

Ransomware

100

2/2024

Change Healthca...

CHA455090325

CVS Health

Breach

11/2023

CVS1026072725

CVS Health

Breach

100

5/2023

AET411072725

CVS Health

Breach

1/2023

CVS910072525

CVS Health

Breach

03/2021

CVS153930322

Loading…

A.I.

CVS Health Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for CVS Health

Incidents vs Hospitals and Health Care Industry Avg (This Year)

No incidents recorded for CVS Health in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for CVS Health in 2026.

Incident Types CVS Health vs Hospitals and Health Care Industry Avg (This Year)

No incidents recorded for CVS Health in 2026.

Incident History - CVS Health (X = Date, Y = Severity)

Loading…

SUBSIDIARY

CVS Health Subsidiaries

CVS Health

Hospitals and Health Care

Website: http://CVSHealth.com

Company Size: 10,000+ employees

CVS Health VenturesVenture Capital and Private Equity Principals

Aetna, a CVS Health CompanyWellness and Fitness Services

ActiveHealthWellness and Fitness Services

Banner|AetnaInsurance

Innovation HealthInsurance

CVS CaremarkHospitals and Health Care

Coram CVS/specialty infusion servicesHospitals and Health Care

CVS HealthspireHospitals and Health Care

CVS Health CareersHospitals and Health Care

CVS CaresideHospitals and Health Care

Signify Health Ireland, part of CVS HealthHospitals and Health Care

Loading…

CVS Health Similar Companies

Baptist Health

baptisthealth.net

Baptist Health South Florida is the region’s largest not-for-profit healthcare organization with 12 hospitals, more than 29,000 employees, 4,500 physicians, and 200 outpatient centers, urgent care facilities, and physician practices spanning across Miami-Dade, Monroe, Broward, and Palm Beach counties. Baptist Health has internationally renowned institutes in cancer care, heart and vascular care, brain and spine care and orthopedic care. Baptist Health is supported by philanthropy and committed to its faith-based charitable mission of medical excellence. Our mission, vision, and values make us who we are at Baptist Health and are at the center of everything we do. At Baptist Health, we positively impact the human experience for patients, employees, and physicians. Our success comes from a culture of quality and dedication that is instilled into every member of the Baptist Health family. This year, and for 25 years, we’ve been named one of Fortune’s 100 Best Companies to Work For, based on employee feedback. We’ve also been recognized as one of America’s Most Innovative Companies and People Magazine included us in its list of Companies That Care. Based on the U.S. News & World Report 2025-2026 Best Hospital Rankings, Baptist Health is the most awarded healthcare system in South Florida, with its hospitals and institutes earning 63 high-performing honors. But really, the reason we’re excited to come to work is the people. Working together, we form personal connections with our colleagues that are stronger than most of us have experienced at other jobs. We develop caring relationships with our patients and their families that go beyond just delivering healthcare. After all, we know what it’s like to be in their shoes. Many of us have been patients here and have had family members as patients here. We’re committed to delivering quality care in the most Join our Talent Community and stay up to date on our career opportunities! https://bit.ly/3Zyh7hY

Erasmus MC

erasmusmc.nl

We are Erasmus MC. Our roots lie in Rotterdam, a city and port of international standing. We are the most innovative university medical center in the Netherlands and one of the world’s leading centers of scientific research. We are committed to achieving a healthy population and pursuing excellence in healthcare through research and teaching. Day in, day out, our staff, volunteers and students work with passion and dedication to achieve everything we stand for: safe, first-rate healthcare for patients with complex issues, unusual and rare conditions or acute needs. But we also stand for top-quality teaching that attracts ambitious, inquisitive and talented students and seeks to answer the healthcare questions of tomorrow. And we stand for world-class scientific research that bolsters our understanding of diseases and disorders and helps to predict, treat and prevent them. We do our work based on our basic principles, the core values of Erasmus MC, 'responsible', 'connecting' and 'enterprising'. We believe that we provide the best care, research and education if we are responsible, binding and enterprising.

Sharp HealthCare

cb sharp.com

Sharp HealthCare is a not-for-profit health care system based in San Diego, California, with four acute care hospitals, three specialty hospitals, three medical groups and a health plan. We provide medical services in virtually all fields of medicine, including primary care, heart care, cancer, orthopedics, stroke/neurology, women’s health, rehabilitation, robotic surgery, bariatric surgery, chemical dependency and behavioral health. Sharp sets the community standard for exceptional care. Sharp Chula Vista Medical Center, Sharp Grossmont Hospital and Sharp Memorial Hospital have received the prestigious Magnet recognition by the American Nurses Credentialing Center for excellence in nursing practices and quality patient care. At the heart of our organization are more than 20,000 nurses, staff, affiliated physicians, and volunteers who are on a journey to make health care better for our patients and their families. It’s what we call The Sharp Experience – treating each person with dignity, compassion and respect, and using our clinical excellence and advanced technology to deliver the highest-quality patient care. We are dedicated to transforming the health care experience by making Sharp the best place to work, the best place to practice medicine and the best place to receive care in San Diego.

Fortis Healthcare

cb fortishealthcare.com

Fortis Healthcare Group is a leading integrated healthcare provider operating across the Asia Pacific region. With more than 20,000 employees and growing, Fortis Helathcare is currently present in Australia, Canada, Hong Kong SAR, India, Mauritius, New Zealand, Singapore, Sri Lanka, UAE, and Vietnam. The hallmark of Fortis Healthcare, distinguishing us from our contemporaries, is the 'patient-centricity' that you will discern all over: in hospital design, services, programmes and most significantly in the caring approach of our people.

Children's Hospital of Philadelphia

cb chop.edu

Since its start in 1855 as the nation's first hospital devoted exclusively to caring for children, The Children's Hospital of Philadelphia has been the birthplace for many dramatic firsts in pediatric medicine. The Hospital has fostered medical discoveries and innovations that have improved pediatric healthcare and saved countless children’s lives. Today, The Children's Hospital of Philadelphia is one of the leading pediatric hospitals and research facilities in the world. Our 150 years of innovation and service to our patients, their families and our community reflect an ongoing commitment to exceptional patient care, training new generations of pediatric healthcare providers and pioneering significant research initiatives.

Inova Health

inova.org

We are Inova, Northern Virginia and the Washington, D.C. metropolitan area’s leading nonprofit healthcare provider. With expertise and compassion, we partner with our patients to help them stay healthy. We treat illness, heal injury and look at a patient’s whole health to help them flourish. Through our expansive network of hospitals, primary and specialty care practices, emergency and urgent care centers, and outpatient services, Inova provides care for more than 1 million unique patients every year. Total patient visits exceed 4 million annually, demonstrating our ability to deliver the best clinical care and ensuring a seamless experience for all who rely on us for their healthcare needs. Consistently ranked and recognized as a national healthcare leader in safety, quality and patient experience, Inova’s world-class care is made possible by the strength and breadth of our network, our 26,000 team members, our technology and our innovation. In 2025, Inova was named the Health System of the Year by Press Ganey, a national leader in healthcare experience, recognizing our excellence in patient care, team member engagement, and commitment to continuous improvement. Inova is home to Northern Virginia’s only Level 1 Trauma Center and Level 4 Neonatal Intensive Care Unit and provides high-quality healthcare to each person in every community we are privileged to serve – regardless of ability to pay – every day of their life. More information about Inova can be found at www.inova.org.

Baylor Scott & White Health

bswhealth.com

With us by your side, there's no stopping you. It's why we're creating a new kind of healthcare at Baylor Scott & White. And we're just getting started. As the largest not-for-profit health system in the state of Texas, Baylor Scott & White promotes the health and well-being of every individual, family and community it serves. It is committed to making quality care more accessible, convenient and affordable through its integrated delivery network, which includes the Baylor Scott & White Health Plan, Baylor Scott & White Research Institute, the Baylor Scott & White Quality Alliance and its leading digital health platform — MyBSWHealth. Through 52 hospitals and more than 1,300 access points, including flagship academic medical centers in Dallas, Fort Worth and Temple, the system offers the full continuum of care, from primary to award-winning specialty care. Founded as a Christian ministry of healing more than a century ago, Baylor Scott & White today serves more than three million Texans. For more information visit: BSWHealth.com.

The University of Texas Medical Branch

utmb.jobs

The first academic health center in Texas opened its doors in 1891 and today has four campuses, five health sciences schools, seven institutes for advanced study, a research enterprise that includes one of only two national laboratories dedicated to the safe study of infectious threats to human health, a Level 1 Trauma Center and a health system offering a full range of primary and specialized medical services throughout the Texas Gulf Coast region. UTMB is an institution in The University of Texas System and a member of the Texas Medical Center.

King Faisal Specialist Hospital and Research Center

kfshrc.edu.sa

King Faisal Specialist Hospital and Research Centre (KFSH&RC) is a 2415 -bed tertiary/quaternary care hospital with facilities in Riyadh, Jeddah & Madinah in the Kingdom of Saudi Arabia. offering Established in 1970 on land donated by the late King Faisal Bin Abdulaziz, in the capital city of Riyadh and officially opened in April 1975 by King Khalid Bin Abdulaziz with a current total land area of 921,000 square meters KFSH&RC employs over 16,000 employees from over 63 different nationalities Highly specialized in inpatient and outpatient medical care, KFSH&RC participates in many clinical and research studies; it is consistently recognized and ranked as one of the nation's top hospital specializing in Oncology, Organ Transplantation, Cardiovascular Diseases Neurosciences and Genetic Diseases. King Faisal Specialist Hospital and Research Centre provides the level of specialized health care in an robust and striving educational and research environment. KFSH&RC is accredited by the Joint Commission International (JCI) and is proud to be one of only six hospitals outside of the USA to have achieved Magnet Hospital status awarded by the American Nurses Credentialing Centre (ANCC) and more recently, KFSH&RC was the first hospital outside of Northern America to be awarded Stage 7 HIMSS Electronic Medical Records, the highest level of using Electronic Health Records

Loading…

NEWS

CVS Health CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

April 01, 2026 07:00 AM

Top 10: CISOs in the US

Cyber Magazine shines the spotlight on the Top 10 CISOs in the US, who are keeping enterprises safe by proudly battling a rising number of...

Read Article

January 10, 2026 08:00 AM

HIPAA Compliance for Pharmacies - 2026 Update

HIPAA compliance for pharmacies is a complex subject to tackle - provided the pharmacy qualifies as a HIPAA Covered Entity.

Read Article

October 08, 2025 07:00 AM

CVS CEO on decision to carry the abortion pill, cybersecurity threats

Karen Lynch, CEO of CVS Health, discussed her company's decision to carry the abortion pill mifepristone, and cybersecurity threats in the...

Read Article

October 01, 2025 07:00 AM

2026's top healthcare and pharma conferences

Each year, the healthcare industry organizes a full slate of events that help executives stay on top of the latest trends and innovations in...

Read Article

September 05, 2025 07:00 AM

CVS Health Faces HIPAA Probe Over Alleged Use of Patient Data for Lobbying and Political Advocacy

CVS Health is facing a probe into potential HIPAA violations related to the alleged use of patient data for lobbying purposes to prevent the...

Read Article

May 30, 2025 07:00 AM

BostonCISO ORBIE Leadership Award recipient: CVS Health CISO Chandra McMahon on why the role is more strategic than ever — and advice for future leaders

Chandra McMahon is a seasoned cybersecurity executive and board member with over 30 years of experience leading complex security and technology programs.

Read Article

May 16, 2025 07:00 AM

Rite Aid Sale of Customer Health Data Looms as Security Concern

The pending sale of millions of customer health records as part of Rite Aid Corp. 's bankruptcy proceedings is putting a spotlight on data security protections.

Read Article

February 12, 2025 08:00 AM

CVS HEALTH Corp SEC 10-K Report

CVS Health Corp, a leading healthcare company, has released its 2024 10-K report, detailing its financial and operational performance over...

Read Article

December 13, 2024 08:00 AM

CVS Health Hit With Wiretapping Suit Over Tracking Code in App

CVS Health Corp. enabled third-party software provider Quantum Metric Inc. to wiretap its customers' communications on the CVS Pharmacy app,...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-56785

SUMMARY

FlatPress versions prior to commit 10be83c, contains a stored cross-site scripting vulnerability in comment and contact forms where name, URL, and email fields are rendered without proper output encoding in Smarty templates. Attackers can inject arbitrary HTML and JavaScript through these fields to execute malicious scripts in browsers of viewers including administrators, or bypass URL scheme validation to inject javascript: or data: URIs.

Published

Date2026-06-23

Updated

Date2026-06-23

RISK INFORMATION (Score: 8.2)

cvss3

Base Score: 8.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N

cvss4

Base Score: 8.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:L/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

4.7

Exploitability

2.8

REFERENCES

CVE-2026-54588

SUMMARY

Poweradmin is a web-based DNS administration tool for PowerDNS server. Versions prior to 4.2.4 and 4.3.3 use the attacker-controlled `HTTP_HOST` request header as the authoritative source for building callback URLs in its OIDC, SAML, and logout authentication flows without any validation. An unauthenticated attacker can poison the `redirect_uri` sent to the Identity Provider, causing the IdP to redirect the victim's authorization code to an attacker-controlled server - resulting in full account takeover with no credentials required. Versions 4.2.4 and 4.3.3 patch the issue.

Published

Date2026-06-23

Updated

Date2026-06-23

RISK INFORMATION (Score: 9.6)

cvss3

Base Score: 9.6

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L

Impact Score

Exploitability

2.8

REFERENCES

CVE-2026-48493

SUMMARY

Snipe-IT is an IT asset/license management system. In versions prior to 8.6.0, a user with only users.edit can send a PATCH to /api/v1/users/{their_own_id} and grant themselves any permission except admin and superuser — for example `assets.view`, `assets.create`, `reports.view`, import, etc. The issue is patched in version 8.6.0.

Published

Date2026-06-23

Updated

Date2026-06-23

RISK INFORMATION (Score: 5.5)

cvss3

Base Score: 5.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:N

Impact Score

4.2

Exploitability

1.2

REFERENCES

CVE-2026-47693

SUMMARY

Poweradmin is a web-based DNS administration tool for PowerDNS server. Versions prior to 4.2.4 and 4.3.3 are vulnerable to CSV Injection (Formula Injection) in its log export functionality. User-controlled data — specifically the username field — is written to exported CSV files without sanitizing formula trigger characters (=, +, -, @). When an administrator exports activity logs and opens the resulting CSV in a spreadsheet application (Microsoft Excel, LibreOffice Calc, Google Sheets), any formula stored in a username is executed by the application. This can be used for phishing attacks against administrators or data exfiltration. Versions 4.2.4 and 4.3.3 patch the issue.

Published

Date2026-06-23

Updated

Date2026-06-23

RISK INFORMATION (Score: 6.9)

cvss3

Base Score: 6.9

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:L/A:N

Impact Score

4.7

Exploitability

1.7

REFERENCES

CVE-2026-12164

SUMMARY

Fortra File Integrity Monitoring (FIM), formerly Tripwire Enterprise, versions prior to 9.4.0 may assign incorrect or elevated effective permissions to users created by the tetool import command while FIM is running, particularly when the import also creates or changes roles or role-permission relationships.

Published

Date2026-06-23

Updated

Date2026-06-23

RISK INFORMATION (Score: 4.4)

cvss3

Base Score: 4.4

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

Impact Score

3.6

Exploitability

0.8

REFERENCES

https://www.fortra.com/security/advisories/product-security/fi-2026-010

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…