DXS
Company Details
Linkedin ID:
dxssystems
Website:
Employees number:
88
Number of followers:
645
NAICS:
5112
Industry Type:
Homepage:
dxs-systems.co.uk
IP Addresses:
0
Company ID:
DXS_7466486
Scan Status:
In-progress
DXS Company CyberSecurity Posture
dxs-systems.co.uk
DXS is a well-established UK healthcare IT provider. Our NHS approved clinical decision support and medicine optimisation software solutions for clinicians, ensure improved outcomes delivered cost-effectively. 𝗕𝗲𝘀𝘁𝗣𝗮𝘁𝗵𝘄𝗮𝘆: A clinical decision support solution encompassing a variety of tools and features to enhance decision making in the clinical workflow. BestPathway provides instant access to high-quality clinical guidance, treatment pathways, and SMART referral forms. ICBs/ICSs, Federations and PCNs can also use BestPathway as a communication tool to deliver the latest local information and updates. 𝗘𝘅𝗽𝗲𝗿𝘁𝗖𝗮𝗿𝗲: A ground-breaking expert software solution developed for the therapeutic management of hypertension. ExpertCare’s expert algorithms provide just-in-time prescribing advice aimed at controlling the patient’s blood pressure to an appropriate target while achieving conformance with best evidence medicine guidance for the management of relevant comorbidities. ExpertCare simplifies complex medicine prescribing and significantly improves practice productivity.
DXS A.I CyberSecurity Scoring
DXS Risk Score (AI oriented)Between 600 and 649
DXS
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
DXS Global Score (TPRM)XXXX
DXS
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
DXS Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
DXS International: NHS England tech provider reveals data breach - DXS International hit by ransomware
Ransomware
Rankiteo Explanation
Attack threatening the organization's existence
Description: NHS Tech Supplier DXS International Hit by Ransomware Attack DXS International, a key technology supplier for the NHS in England, disclosed a ransomware attack on December 14, 2023, after detecting a security incident affecting its office servers. The company engaged third-party cybersecurity experts to investigate and confirmed minimal disruption to its services, with front-line clinical operations remaining unaffected. While DXS did not initially disclose details about the attack or data theft, an unknown ransomware group called *DevMan* later claimed responsibility. According to *TechCrunch*, the group posted on its dark web site on the same day, alleging the theft of 300GB of company data. The absence of leaked files suggests a possible extortion attempt. This incident follows a 2022 ransomware attack on NHS supplier Advanced Computer Group, which caused significant disruptions, including outages to NHS 111 services and restricted access to patient records. The breach exposed sensitive data, including medical records and home care access details for 890 individuals. In March 2025, the UK Information Commissioner’s Office (ICO) fined the company £3.07 million for the breach, which affected 79,404 people.
DXS Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for DXS
Incidents vs Software Development Industry Average (This Year)
No incidents recorded for DXS in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for DXS in 2026.
Incident Types DXS vs Software Development Industry Avg (This Year)
No incidents recorded for DXS in 2026.
Incident History — DXS (X = Date, Y = Severity)
DXS cyber incidents detection timeline including parent company and subsidiaries
DXS Company Subsidiaries
DXS is a well-established UK healthcare IT provider. Our NHS approved clinical decision support and medicine optimisation software solutions for clinicians, ensure improved outcomes delivered cost-effectively. 𝗕𝗲𝘀𝘁𝗣𝗮𝘁𝗵𝘄𝗮𝘆: A clinical decision support solution encompassing a variety of tools and features to enhance decision making in the clinical workflow. BestPathway provides instant access to high-quality clinical guidance, treatment pathways, and SMART referral forms. ICBs/ICSs, Federations and PCNs can also use BestPathway as a communication tool to deliver the latest local information and updates. 𝗘𝘅𝗽𝗲𝗿𝘁𝗖𝗮𝗿𝗲: A ground-breaking expert software solution developed for the therapeutic management of hypertension. ExpertCare’s expert algorithms provide just-in-time prescribing advice aimed at controlling the patient’s blood pressure to an appropriate target while achieving conformance with best evidence medicine guidance for the management of relevant comorbidities. ExpertCare simplifies complex medicine prescribing and significantly improves practice productivity.
Loading...
DXS Similar Companies
Rakuten Group, Inc. (TSE: 4755) is a global technology leader in services that empower individuals, communities, businesses and society. Founded in Tokyo in 1997 as an online marketplace, Rakuten has expanded to offer services in e-commerce, fintech, digital content and communications to 2 billion m
Sage
At Sage, we knock down barriers with information, insights, and tools to help your business flow. We provide businesses with software and services that are simple and easy to use, as we work with you to give you that feeling of confidence. Customers trust our Payroll, HR, and Finance software to m
Agoda
At Agoda, we bridge the world through travel. We aim to make it easy and rewarding for more travelers to explore and experience the amazing world we live in. We do so by enabling more people to see the world for less – with our best-value deals across our 6,000,000+ hotels and holiday properties, 13
Upwork is the world’s work marketplace that connects businesses with independent talent from across the globe. We serve everyone from one-person startups to large, Fortune 100 enterprises with a powerful, trust-driven platform that enables companies and talent to work together in new ways that unloc
Microsoft
Every company has a mission. What's ours? To empower every person and every organization to achieve more. We believe technology can and should be a force for good and that meaningful innovation contributes to a brighter world in the future and today. Our culture doesn’t just encourage curiosity; it
Infor
Infor is a global leader in business cloud software products for companies in industry specific markets. Infor builds complete industry suites in the cloud and efficiently deploys technology that puts the user experience first, leverages data science, and integrates easily into existing systems. Ov
Juniper Networks
Juniper Networks is leading the revolution in networking, making it one of the most exciting technology companies in Silicon Valley today. Since being founded by Pradeep Sindhu, Dennis Ferguson, and Bjorn Liencres nearly 20 years ago, Juniper’s sole mission has been to create innovative products and
SAP is the leading enterprise application and business AI company. We stand at the intersection of business and technology, where our innovations are designed to directly address real business challenges and produce real-world impacts. Our solutions are the backbone for the world’s most complex and
Amazon is guided by four principles: customer obsession rather than competitor focus, passion for invention, commitment to operational excellence, and long-term thinking. We are driven by the excitement of building technologies, inventing products, and providing services that change lives. We embrac
.png)
DXS CyberSecurity News
January 06, 2026 08:00 AM
New Zealand Probes Major ManageMyHealth Data Breach, Hacker Claims Stealing Over 428,000 Files
New Zealand's government has launched a review into a major ManageMyHealth data breach that affected the sensitive health data of over...
January 02, 2026 11:40 AM
DistributeX Announces Launch of DX Coin, the Platform’s Native Token to Power Web3 Distribution and Community Ecosystem Growth
DistributeX (“DX”) recently announced the official launch of DX Coin, its native incentive token. DX Coin is designed to support the...
December 31, 2025 08:00 AM
US cybersecurity professionals plead guilty to Blackcat ransomware attacks
Two ex-cybersecurity professionals pleaded guilty to ALPHV ransomware extortion attempts; They extorted $1.2M from a medical device firm;...
December 24, 2025 08:00 AM
DXS says cyber security incident contained, remains vigilant
DXS International PLC - Leicestershire, England-based healthcare information and clinical decision support systems provider - says cyber...
December 22, 2025 08:00 AM
UK: NHS Supplier Confirms Cyber-Attack, Operations Unaffected
DXS International, an official partner of NHS England, said the breach has not affected its operations.
December 22, 2025 08:00 AM
NHS England tech provider reveals data breach - DXS International hit by ransomware
DXS International, a key technology supplier for the National Health Service (NHS) in England, has revealed it suffered a ransomware attack...
December 22, 2025 08:00 AM
The Department of Know: President signs defense bill, time flies at NIST, Italian ferry malware
President signs defense bill funding Cyber Command, Amazon warns of Sandworm shifted tactics, malware on Italian ferry.
December 19, 2025 12:00 PM
News - DXS International discloses cyberattack on office servers, NHS services unaffected
DXS International, a U.K.-based healthcare technology company that supplies software to England's National Health Service, has disclosed a...
December 19, 2025 08:00 AM
NHS supplier DXS International confirms cyber attack – here’s what we know so far
NHS software supplier DXS International has disclosed a cyber attack on its internal systems. The company provides clinical support...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
DXS CyberSecurity History Information
Official Website of DXS
The official website of DXS is http://www.dxs-systems.co.uk.
DXS’s AI-Generated Cybersecurity Score
According to Rankiteo, DXS’s AI-generated cybersecurity score is 643, reflecting their Poor security posture.
How many security badges does DXS’ have ?
According to Rankiteo, DXS currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has DXS been affected by any supply chain cyber incidents ?
According to Rankiteo, DXS has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does DXS have SOC 2 Type 1 certification ?
According to Rankiteo, DXS is not certified under SOC 2 Type 1.
Does DXS have SOC 2 Type 2 certification ?
According to Rankiteo, DXS does not hold a SOC 2 Type 2 certification.
Does DXS comply with GDPR ?
According to Rankiteo, DXS is not listed as GDPR compliant.
Does DXS have PCI DSS certification ?
According to Rankiteo, DXS does not currently maintain PCI DSS compliance.
Does DXS comply with HIPAA ?
According to Rankiteo, DXS is not compliant with HIPAA regulations.
Does DXS have ISO 27001 certification ?
According to Rankiteo,DXS is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of DXS
DXS operates primarily in the Software Development industry.
Number of Employees at DXS
DXS employs approximately 88 people worldwide.
Subsidiaries Owned by DXS
DXS presently has no subsidiaries across any sectors.
DXS’s LinkedIn Followers
DXS’s official LinkedIn profile has approximately 645 followers.
NAICS Classification of DXS
DXS is classified under the NAICS code 5112, which corresponds to Software Publishers.
DXS’s Presence on Crunchbase
Yes, DXS has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/dxs-international.
DXS’s Presence on LinkedIn
Yes, DXS maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/dxssystems.
Cybersecurity Incidents Involving DXS
As of January 24, 2026, Rankiteo reports that DXS has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
DXS has an estimated 28,190 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at DXS ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
How does DXS detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with cybersecurity specialists, and law enforcement notified with relevant authorities, and remediation measures with incident remedied..
Incident Details
Can you provide details on each incident ?
Title: DXS International Ransomware Attack
Description: DXS International, a key technology supplier for the NHS in England, suffered a ransomware attack by an unknown threat actor. The attack was claimed by the ransomware group DevMan, which alleges theft of 300GB of company data. The incident had minimal impact on clinical services.
Date Detected: 2023-12-14
Type: Ransomware
Threat Actor: DevMan
Motivation: Extortion
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware DXS1766412041
Data Compromised: 300GB of data allegedly stolen
Systems Affected: Office servers
Operational Impact: Minimal impact on clinical services
Which entities were affected by each incident ?
Incident : Ransomware DXS1766412041
Entity Name: DXS International
Entity Type: Technology Supplier
Industry: Healthcare Technology
Location: England
Customers Affected: NHS (National Health Service)
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Ransomware DXS1766412041
Third Party Assistance: Cybersecurity specialists
Law Enforcement Notified: Relevant authorities
Remediation Measures: Incident remedied
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through Cybersecurity specialists.
Data Breach Information
What type of data was compromised in each breach ?
Incident : Ransomware DXS1766412041
Data Exfiltration: 300GB of data allegedly stolen
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Incident remedied.
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : Ransomware DXS1766412041
Data Exfiltration: 300GB of data allegedly stolen
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Ransomware DXS1766412041
Regulatory Notifications: Relevant authorities notified
References
Where can I find more information about each incident ?
Incident : Ransomware DXS1766412041
Source: TechCrunch
Incident : Ransomware DXS1766412041
Source: London Stock Exchange
Incident : Ransomware DXS1766412041
Source: TechRadar
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: TechCrunch, and Source: London Stock Exchange, and Source: TechRadar.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Ransomware DXS1766412041
Investigation Status: Ongoing
Post-Incident Analysis
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Cybersecurity specialists.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an DevMan.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2023-12-14.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident was 300GB of data allegedly stolen.
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was Cybersecurity specialists.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was 300GB of data allegedly stolen.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are TechCrunch, London Stock Exchange and TechRadar.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Typemill is a flat-file, Markdown-based CMS designed for informational documentation websites. A reflected Cross-Site Scripting (XSS) exists in the login error view template `login.twig` of versions 2.19.1 and below. The `username` value can be echoed back without proper contextual encoding when authentication fails. An attacker can execute script in the login page context. This issue has been fixed in version 2.19.2.
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Description
A DOM-based Cross-Site Scripting (XSS) vulnerability exists in the DomainCheckerApp class within domain/script.js of Sourcecodester Domain Availability Checker v1.0. The vulnerability occurs because the application improperly handles user-supplied data in the createResultElement method by using the unsafe innerHTML property to render domain search results.
Description
A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Modern Image Gallery App v1.0 within the gallery/upload.php component. The application fails to properly validate uploaded file contents. Additionally, the application preserves the user-supplied file extension during the save process. This allows an unauthenticated attacker to upload arbitrary PHP code by spoofing the MIME type as an image, leading to full system compromise.
Description
A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at jailer startup, if the jailer is executed with root privileges. To mitigate this issue, users should upgrade to version v1.13.2 or 1.14.1 or above.
Risk Information
cvss3
Base: 6.0
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
cvss4
Base: 6.0
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description
An information disclosure vulnerability exists in the /srvs/membersrv/getCashiers endpoint of the Aptsys gemscms backend platform thru 2025-05-28. This unauthenticated endpoint returns a list of cashier accounts, including names, email addresses, usernames, and passwords hashed using MD5. As MD5 is a broken cryptographic function, the hashes can be easily reversed using public tools, exposing user credentials in plaintext. This allows remote attackers to perform unauthorized logins and potentially gain access to sensitive POS operations or backend functions.
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=dxssystems' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
