What is the official website of CVS Health ?

The official website of CVS Health is http://CVSHealth.com.

What is CVS Health's cybersecurity risk score?

CVS Health has an AI-generated cybersecurity risk score of 683 out of 1000, indicating a Weak security posture according to Rankiteo's assessment.

How many security incidents has CVS Health experienced?

According to Rankiteo, CVS Health currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has CVS Health been affected by any supply chain cyber incidents ?

According to Rankiteo, CVS Health has been affected by a supply chain cyber incident involving Change Healthcare, with the incident ID CHA455090325.

Does CVS Health have SOC 2 Type 1 certification ?

According to Rankiteo, CVS Health is not certified under SOC 2 Type 1.

Does CVS Health have SOC 2 Type 2 certification ?

According to Rankiteo, CVS Health does not hold a SOC 2 Type 2 certification.

Does CVS Health comply with GDPR ?

According to Rankiteo, CVS Health is not listed as GDPR compliant.

Does CVS Health have PCI DSS certification ?

According to Rankiteo, CVS Health does not currently maintain PCI DSS compliance.

Does CVS Health comply with HIPAA ?

According to Rankiteo, CVS Health is not compliant with HIPAA regulations.

Does CVS Health have ISO 27001 certification ?

According to Rankiteo,CVS Health is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does CVS Health operate in ?

CVS Health operates primarily in the Hospitals and Health Care industry.

How many employees does CVS Health have ?

CVS Health employs approximately 137,169 people worldwide.

Does CVS Health own any subsidiaries ?

CVS Health presently has no subsidiaries across any sectors.

How many LinkedIn followers does CVS Health have ?

CVS Health's official LinkedIn profile has approximately 1,206,072 followers.

What is the NAICS classification code for CVS Health ?

CVS Health is classified under the NAICS code 62, which corresponds to Health Care and Social Assistance.

Does CVS Health have a Crunchbase profile ?

No, CVS Health does not have a profile on Crunchbase.

Does CVS Health have a LinkedIn profile ?

Yes, CVS Health maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/cvshealth.

How many cybersecurity incidents has CVS Health experienced ?

As of June 15, 2026, Rankiteo reports that CVS Health has experienced 6 cybersecurity incidents.

How many peer or competitor companies does CVS Health have ?

CVS Health has an estimated 33,037 peer or competitor companies worldwide.

What types of cybersecurity incidents has CVS Health faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Ransomware and Breach.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

CVS Health

Boost Score +25 with badge (5 left)

683

/1000

Weak

708

/1000

Moderate

CVS Health Vendor Cyber Rating & Cyber Score

CVSHealth.com

Add Your Compliance Badge

CVS Health is the leading health solutions company, delivering care like no one else can. We reach more people and improve the health of communities across America through our local presence, digital channels and over 300,000 dedicated colleagues. Wherever and whenever people need us, we help them with their health – whether that’s managing chronic diseases, staying compliant with their medications or accessing affordable health and wellness services in the most convenient ways. We help people navigate the health care system – and their personal health care – by simplifying health care one person, one family and one community at a time. Follow @CVSHealth on social media.

CVS Health A.I CyberSecurity Scoring

Scoring History

CVS Health

CVS Health CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Aetna, a CVS Health...

Breach

12/2025

AET1766440692

CVS Health

Ransomware

100

2/2024

Change Healthca...

CHA455090325

CVS Health

Breach

11/2023

CVS1026072725

CVS Health

Breach

100

5/2023

AET411072725

CVS Health

Breach

1/2023

CVS910072525

CVS Health

Breach

03/2021

CVS153930322

Loading…

A.I.

CVS Health Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for CVS Health

Incidents vs Hospitals and Health Care Industry Avg (This Year)

No incidents recorded for CVS Health in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for CVS Health in 2026.

Incident Types CVS Health vs Hospitals and Health Care Industry Avg (This Year)

No incidents recorded for CVS Health in 2026.

Incident History - CVS Health (X = Date, Y = Severity)

Loading…

SUBSIDIARY

CVS Health Subsidiaries

CVS Health

Hospitals and Health Care

Website: http://CVSHealth.com

Company Size: 10,000+ employees

CVS Health VenturesVenture Capital and Private Equity Principals

Aetna, a CVS Health CompanyWellness and Fitness Services

Banner|AetnaInsurance

ActiveHealthWellness and Fitness Services

Innovation HealthInsurance

Coram CVS/specialty infusion servicesHospitals and Health Care

CVS CaremarkHospitals and Health Care

CVS Health CareersHospitals and Health Care

CVS CaresideHospitals and Health Care

Signify Health Ireland, part of CVS HealthHospitals and Health Care

CVS HealthspireHospitals and Health Care

Loading…

CVS Health Similar Companies

Sunrise Senior Living

cb sunriseseniorliving.com

Beginning with a single community in 1981, Sunrise Senior Living has grown to more than 270 communities throughout the U.S. and Canada. Each of our communities continues the mission laid out by founders Paul and Terry Klaassen more than 40 years ago: to champion quality of life for all seniors. Join Our Team: At Sunrise Senior Living, our team members are at the heart of what sets us apart. We offer a unique, challenging, and rewarding work environment with competitive salaries, excellent benefits, and opportunities for both personal and professional growth. The relationships and bonds you will create with residents highlight meaningful ways to serve, grow, and shine together. A Career That PositivelyShines: Every resident needs a dedicated, compassionate, and experienced team around them. They also need a warm sense of companionship, opportunities to explore their interests, and moments of togetherness that bring laughter and joy. When you join our team, whether as a caregiver, culinary professional, maintenance expert, or in any other role, you'll play a vital part in creating an environment where longer, healthier, and happier lives are celebrated. This is what makes working at Sunrise truly special. Locations: With more than 270 communities and Community Support Offices located in McLean, Virginia, career opportunities can be found almost everywhere. To view our current openings and learn more about the exciting career opportunities available at Sunrise, please visit our careers page at: www.sunrise-careers.com This is your chance to make a bigger impact than you ever imagined. How will you brighten the future?

OSF HealthCare

osfhealthcare.org

OSF HealthCare is an integrated health system founded by The Sisters of the Third Order of St. Francis. Headquartered in Peoria, Illinois, OSF HealthCare has 17 hospitals – 11 acute care, five critical access and one continuing care – with 2,305 licensed beds throughout Illinois and Michigan. OSF employs more than 26,000 Mission Partners across 171 locations; has two colleges of nursing; operates OSF Home Care Services, an extensive network of home health and hospice services; owns Pointcore, Inc., comprised of health care-related businesses; OSF HealthCare Foundation, the philanthropic arm for the organization; and OSF Ventures, which provides investment capital for promising health care innovation startups. In 2020, OSF OnCall was established as a digital health operating unit and includes a hospital-at-home program. OSF OnCall delivers care and services when, where and how patients prefer to receive them. OSF HealthCare has been recognized by Fortune as one of the most innovative companies in the country. OSF consistently earns recognition for showing dedication to the well-being of its Mission Partners: •America’s Best-in-State Employers | Forbes Magazine | 2018-2025 •150 Top Places to Work in Healthcare | Becker’s Healthcare | 2019, 2022-2025 •Best Employers for Women | Forbes Magazine | 2020 OSF HealthCare is an Equal Opportunity Employer (EOE). By engaging with this page, you acknowledge and agree to follow our social media terms of use, which you can find here: https://www.osfhealthcare.org/patients-visitors/terms-conditions/social-terms

Rede D'Or

rededorsaoluiz.com.br

A Rede D’Or é a maior rede de saúde da América Latina. São 79 hospitais e mais de 60 clínicas oncológicas com presença nos estados de AL, BA, CE, DF, MA, MG, MS, PA, PB, PE, PR, RJ, SE, SP. Referência em qualidade técnica, a Rede D’Or atua em serviços complementares como banco de sangue, diálise e ambulatórios de diversas especialidades. A Rede D’Or também investe em inovação e pesquisa clínica por meio do IDOR - Instituto D’Or de Pesquisa e Ensino. Siga a Rede D’Or também em: Instagram: @rededor_oficial Facebook: https://www.facebook.com/rededor YouTube: https://www.youtube.com/user/rededorsaoluiz

Aveanna Healthcare

cb aveanna.com

About Aveanna It all started with a simple idea: How can we help people live better lives by providing better homecare? That idea became a company called Aveanna, dedicated to bringing new possibilities and new hope to those we serve. At Aveanna, we believe that the ultimate place for caring is right in the comfort of home. We are a new company that has quickly established itself as a pre-eminent, national leader in healthcare as well as homecare. We believe in clinical excellence, innovation, and compassionate care to every patient and family we are privileged to help. But what sets us apart most is our focus on the relationship between the caregiver and the patient. By surrounding our patients with superior resources, and by giving our caregivers better technology and training, we are able to provide superior care that makes a difference in what’s possible in outcomes and daily living. Aveanna’s leadership team has worked for more than 40 years building other great homecare companies on a national level. Now that experience is building the homecare company of the future. Today, Aveanna Healthcare cares for patients and families in 33 states through our rapidly growing network of more than 300 branch offices, offering a variety of care and services to more than 80,000 children and adults.

Siemens Healthineers

cb siemens-healthineers.com

Siemens Healthineers is a leading medtech company with over 125 years of experience. We pioneer breakthroughs in healthcare. For everyone. Everywhere. Sustainably. Our portfolio, spanning in vitro and in vivo diagnostics to image-guided therapy and cancer care, is crucial for clinical decision-making and treatment pathways. With our strengths in patient twinning, precision therapy, as well as digital, data, and artificial intelligence (AI), we are well positioned to take on the greatest challenges in healthcare. We will continue to build on these strengths to help overcome the world’s most threatening diseases, enable efficient operations, and expand access to care. We are a team of more than 71,000 Healthineers in over 70 countries passionately pushing the boundaries of what is possible in healthcare to help improve the lives of people around the world.

GE HealthCare

gehealthcare.com

Every day millions of people feel the impact of our intelligent devices, advanced analytics and artificial intelligence. As a leading global medical technology and digital solutions innovator, GE HealthCare enables clinicians to make faster, more informed decisions through intelligent devices, data analytics, applications and services, supported by its Edison intelligence platform. With over 100 years of healthcare industry experience and around 50,000 employees globally, the company operates at the center of an ecosystem working toward precision health, digitizing healthcare, helping drive productivity and improve outcomes for patients, providers, health systems and researchers around the world. We embrace a culture of respect, transparency, integrity and diversity and we work to create a world where healthcare has no limits.

EsSalud

gob.pe

El Seguro Social de Salud, EsSalud, es un organismo público descentralizado, con personería jurídica de derecho público interno, adscrito al Sector Trabajo y Promoción Social. Tiene por finalidad dar cobertura a los asegurados y sus derechohabientes, a través del otorgamiento de prestaciones de prevención, promoción, recuperación, rehabilitación, prestaciones económicas, y prestaciones sociales que corresponden al régimen contributivo de la Seguridad Social en Salud, así como otros seguros de riesgos humanos.

UnitedHealthcare

uhc.com

When it comes to your health, everything matters. That’s why UnitedHealthcare is helping people live healthier lives and making the health system work better for everyone. Our health plans are there for you in moments big and small, delivering a simple experience, affordable coverage, and supportive care. At UnitedHealthcare, part of the UnitedHealth Group family of businesses, we are working to create a system that is connected, aligned and more affordable for all involved; one that delivers high quality care, responsive to the needs of each person and the communities in which they live. With connections to more than 1.3 million physicians and care professionals and 6,500 hospitals and care facilities across the globe, we can collaborate in new ways to improve patient care while providing customizable and comprehensive solutions in any marketplace, anywhere. Our Values Integrity: Honor commitments. Never compromise ethics. Compassion: Walk in the shoes of the people we serve and those with whom we work. Relationships: Build trust through collaboration. Innovation: Invent the future. Learn from the past. Performance: Demonstrate excellence in everything we do. For more information about UnitedHealthcare, click here: https://www.uhc.com/ For information about careers at UnitedHealthcare, click here: https://www.workatuhc.com

Optum

optum.com

At Optum, we take a bold approach to solving the challenges of healthcare. We call it Healthy Optumism — the realistic yet hopeful belief that when you’re grounded in real world needs, human connection and data-driven expertise, better is always possible. We use advanced technology to connect people to insights in real time, focus on prevention, and strip away inefficiencies. We know change doesn’t happen overnight, but every success moves us closer to delivering efficient, affordable, high-quality care.

Loading…

NEWS

CVS Health CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

April 01, 2026 07:00 AM

Top 10: CISOs in the US

Cyber Magazine shines the spotlight on the Top 10 CISOs in the US, who are keeping enterprises safe by proudly battling a rising number of...

Read Article

January 10, 2026 08:00 AM

HIPAA Compliance for Pharmacies - 2026 Update

HIPAA compliance for pharmacies is a complex subject to tackle - provided the pharmacy qualifies as a HIPAA Covered Entity.

Read Article

October 08, 2025 07:00 AM

CVS CEO on decision to carry the abortion pill, cybersecurity threats

Karen Lynch, CEO of CVS Health, discussed her company's decision to carry the abortion pill mifepristone, and cybersecurity threats in the...

Read Article

October 01, 2025 07:00 AM

2026's top healthcare and pharma conferences

Each year, the healthcare industry organizes a full slate of events that help executives stay on top of the latest trends and innovations in...

Read Article

September 05, 2025 07:00 AM

CVS Health Faces HIPAA Probe Over Alleged Use of Patient Data for Lobbying and Political Advocacy

CVS Health is facing a probe into potential HIPAA violations related to the alleged use of patient data for lobbying purposes to prevent the...

Read Article

May 30, 2025 07:00 AM

BostonCISO ORBIE Leadership Award recipient: CVS Health CISO Chandra McMahon on why the role is more strategic than ever — and advice for future leaders

Chandra McMahon is a seasoned cybersecurity executive and board member with over 30 years of experience leading complex security and technology programs.

Read Article

May 16, 2025 07:00 AM

Rite Aid Sale of Customer Health Data Looms as Security Concern

The pending sale of millions of customer health records as part of Rite Aid Corp. 's bankruptcy proceedings is putting a spotlight on data security protections.

Read Article

February 12, 2025 08:00 AM

CVS HEALTH Corp SEC 10-K Report

CVS Health Corp, a leading healthcare company, has released its 2024 10-K report, detailing its financial and operational performance over...

Read Article

December 13, 2024 08:00 AM

CVS Health Hit With Wiretapping Suit Over Tracking Code in App

CVS Health Corp. enabled third-party software provider Quantum Metric Inc. to wiretap its customers' communications on the CVS Pharmacy app,...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12191

SUMMARY

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdrive/modeld/modeld.py of the component Pickle Module. The manipulation results in deserialization. The attack is only possible with local access. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 7.8)

cvss2

Base Score: 6.8

Complexity: LOW

AV:L/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.1

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-12190

SUMMARY

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the component ai.mainfunc.genspark. The manipulation leads to improper authorization in handler for custom url scheme. The attack can only be performed from a local environment. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 5.3)

cvss2

Base Score: 4.3

Complexity: LOW

AV:L/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 4.8

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.8

REFERENCES

CVE-2026-12189

SUMMARY

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzmate. Executing a manipulation can lead to improper authorization in handler for custom url scheme. The attack can only be executed locally. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 5.3)

cvss2

Base Score: 4.3

Complexity: LOW

AV:L/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 1.9

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.8

REFERENCES

CVE-2026-12188

SUMMARY

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules/core/backend/app/controllers/concerns/grit/core/grit_entity_controller.rb of the component GritEntityController. Performing a manipulation results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

CVE-2026-12187

SUMMARY

A security vulnerability has been detected in GL.iNet GL-MT3000 up to 4.4.5. Affected by this vulnerability is an unknown functionality of the file /usr/bin/one_click_upgrade of the component Online Firmware Upgrade Handler. Such manipulation leads to command injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. Upgrading to version 4.7 addresses this issue. Upgrading the affected component is advised. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…