What is the official website of U.S. Department of Health and Human Services (HHS) ?

The official website of U.S. Department of Health and Human Services (HHS) is http://www.hhs.gov/.

What is U.S. Department of Health and Human Services (HHS)'s cybersecurity risk score?

U.S. Department of Health and Human Services (HHS) has an AI-generated cybersecurity risk score of 430 out of 1000, indicating a Critical security posture according to Rankiteo's assessment.

How many security incidents has U.S. Department of Health and Human Services (HHS) experienced?

According to Rankiteo, U.S. Department of Health and Human Services (HHS) currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has U.S. Department of Health and Human Services (HHS) been affected by any supply chain cyber incidents ?

According to Rankiteo, U.S. Department of Health and Human Services (HHS) has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does U.S. Department of Health and Human Services (HHS) have SOC 2 Type 1 certification ?

According to Rankiteo, U.S. Department of Health and Human Services (HHS) is not certified under SOC 2 Type 1.

Does U.S. Department of Health and Human Services (HHS) have SOC 2 Type 2 certification ?

According to Rankiteo, U.S. Department of Health and Human Services (HHS) does not hold a SOC 2 Type 2 certification.

Does U.S. Department of Health and Human Services (HHS) comply with GDPR ?

According to Rankiteo, U.S. Department of Health and Human Services (HHS) is not listed as GDPR compliant.

Does U.S. Department of Health and Human Services (HHS) have PCI DSS certification ?

According to Rankiteo, U.S. Department of Health and Human Services (HHS) does not currently maintain PCI DSS compliance.

Does U.S. Department of Health and Human Services (HHS) comply with HIPAA ?

According to Rankiteo, U.S. Department of Health and Human Services (HHS) is not compliant with HIPAA regulations.

Does U.S. Department of Health and Human Services (HHS) have ISO 27001 certification ?

According to Rankiteo,U.S. Department of Health and Human Services (HHS) is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does U.S. Department of Health and Human Services (HHS) operate in ?

U.S. Department of Health and Human Services (HHS) operates primarily in the Government Administration industry.

How many employees does U.S. Department of Health and Human Services (HHS) have ?

U.S. Department of Health and Human Services (HHS) employs approximately 13,658 people worldwide.

Does U.S. Department of Health and Human Services (HHS) own any subsidiaries ?

U.S. Department of Health and Human Services (HHS) presently has no subsidiaries across any sectors.

How many LinkedIn followers does U.S. Department of Health and Human Services (HHS) have ?

U.S. Department of Health and Human Services (HHS)'s official LinkedIn profile has approximately 1,140,565 followers.

What is the NAICS classification code for U.S. Department of Health and Human Services (HHS) ?

U.S. Department of Health and Human Services (HHS) is classified under the NAICS code 92, which corresponds to Public Administration.

Does U.S. Department of Health and Human Services (HHS) have a Crunchbase profile ?

No, U.S. Department of Health and Human Services (HHS) does not have a profile on Crunchbase.

Does U.S. Department of Health and Human Services (HHS) have a LinkedIn profile ?

Yes, U.S. Department of Health and Human Services (HHS) maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/hhsgov.

How many peer or competitor companies does U.S. Department of Health and Human Services (HHS) have ?

U.S. Department of Health and Human Services (HHS) has an estimated 12,890 peer or competitor companies worldwide.

What types of cybersecurity incidents has U.S. Department of Health and Human Services (HHS) faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Ransomware, Breach and Data Leak.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

UDHHS

Boost Score +25 with badge (5 left)

430

/1000

Critical

455

/1000

Critical

U.S. Department of Health and Human Services (HHS) Vendor Cyber Rating & Cyber Score

hhs.gov

Add Your Compliance Badge

The Department of Health and Human Services (HHS) is the United States government's principal agency for protecting the health of all Americans and providing essential human services, especially for those who are least able to help themselves.

UDHHS A.I CyberSecurity Scoring

Scoring History

UDHHS

U.S. Department of Health and Human Services (HHS) CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

U.S. Department of ...

Breach

2/2026

HHS1771281140

U.S. Department of ...

Ransomware

100

6/2025

HHS821061925

U.S. Department of ...

Breach

1/2025

BAKHHS177457831...

U.S. Department of ...

Breach

1/2025

HHS1772059552

U.S. Department of ...

Breach

100

12/2023

HHS002070924

U.S. Department of ...

Data Leak

07/2023

USD24024723

U.S. Department of ...

Data Leak

4/2020

USD142925623

U.S. Department of ...

Data Leak

03/2019

USD54141223

Loading…

A.I.

UDHHS Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for UDHHS

Incidents vs Government Administration Industry Avg (This Year)

U.S. Department of Health and Human Services (HHS) has 30.56% fewer incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs All-Companies Average (This Year)

U.S. Department of Health and Human Services (HHS) has 6.54% fewer incidents than the average of all companies with at least one recorded incident.

Incident Types UDHHS vs Government Administration Industry Avg (This Year)

U.S. Department of Health and Human Services (HHS) reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 0 vulnerabilities, 1 data breaches, compared to industry peers with at least 1 incident.

Incident History - UDHHS (X = Date, Y = Severity)

Loading…

SUBSIDIARY

U.S. Department of Health and Human Services (HHS) Subsidiaries

UDHHS

Government Administration

Website: http://www.hhs.gov/

Company Size: 10,000+ employees

Office of Infectious Disease and HIV/AIDS PolicyGovernment Administration

HHS CareersGovernment Administration

HHS Office of Inspector GeneralGovernment Administration

Administration for Children and Families (ACF)Government Administration

Office on Trafficking in PersonsGovernment Administration

Capacity Building Center for StatesGovernment Administration

Child Welfare Information GatewayHealth and Human Services

RHY ProgramGovernment Administration

PeerTAGovernment Administration

Health Profession Opportunity Grants (HPOG)Government Administration

Office of Human Services Emergency Preparedness and Response (OHSEPR)Government Administration

HHS Office of Small and Disadvantaged Business Utilization (HHS OSDBU)Government Relations Services

Secretary KennedyGovernment Administration

Medical Reserve CorpsGovernment Administration

HHS Access2SuccessGovernment Relations

Loading…

U.S. Department of Health and Human Services (HHS) Similar Companies

Internal Revenue Service

irs.gov

Welcome to the Internal Revenue Service’s official LinkedIn account. Here, you will find the latest and greatest news and updates for taxpayers to help them understand and meet their tax responsibilities. Also, this is a place to learn about a meaningful career with the IRS. Check out the tabs above to learn more about us and view job openings. The U.S. government does not promote or endorse any non-government or commercial content appearing on this page. This service is operated by a third party and not an official government website. The IRS strongly discourages you from providing personally identifiable information. Read our privacy policy at www.irs.gov/privacy

Ontario Government | Gouvernement de l’Ontario

ontario.ca

Ontario Government | Gouvernement de l’Ontario The Ontario Government works to serve the public interest and uphold the public trust by providing Ministers with objective advice and expert guidance. The Ontario Public Service carries out the decisions and policies of the elected government with integrity and accountability and administers public services to the highest professional standards. Le gouvernement de l’Ontario sert l’intérêt public et conserve la confiance du public en fournissant aux ministres des conseils objectifs et spécialisés. La fonction publique de l’Ontario applique les décisions et les politiques du gouvernement élu. En respectant le principe de reddition des comptes et avec intégrité, elle administre les services à la population selon les normes professionnelles les plus rigoureuses.

US Government Accountability Office

gao.gov

For more information about GAO, please visit www.gao.gov. General Information The U.S. Government Accountability Office (GAO) is an independent, nonpartisan agency that works for Congress. Often called the "congressional watchdog," GAO investigates how the federal government spends taxpayer dollars. Mission Our Mission is to support the Congress in meeting its constitutional responsibilities and to help improve the performance and ensure the accountability of the federal government for the benefit of the American people. We provide Congress with timely information that is objective, fact-based, nonpartisan, non-ideological, fair, and balanced. GAO Social Media Terms of Use: https://www.facebook.com/usgao/app/250336418365488/

Transportation Security Administration (TSA)

tsa.gov

The Transportation Security Administration (TSA) is a component agency of the U.S. Department of Homeland Security (DHS), committed to securing the nation’s transportation systems to ensure safe and efficient travel for all. Our mission is to protect the American people by preventing threats and disruptions in the transportation sector, while enhancing the overall passenger experience. 🔹 Mission: Safeguard transportation systems and prevent security threats 🔹 Vision: Achieve a secure and resilient transportation network 🔹 Values: Integrity, Excellence, Accountability, and Innovation More than 60,000 people around the world make up #TeamTSA and ensure the safety of millions of people each day as they travel by plane, train, automobile or ferry. From the officers you see on the frontlines to our cybersecurity and mission support teams, we’re working hard to combat evolving threats and keep you safe. Join us in our commitment to a more secure travel experience. For more information, visit tsa.gov.

U.S. Department of Education

ed.gov

Our mission is to promote student achievement and preparation for global competitiveness by fostering educational excellence and ensuring equal access. ED is dedicated to: • Establishing policies on federal financial aid for education, and distributing as well as monitoring those funds. • Collecting data on America's schools and disseminating research. • Focusing national attention on key educational issues. • Prohibiting discrimination and ensuring equal access to education.

National Park Service

nps.gov

Most people know that the National Park Service cares for national parks, a network of over 420 natural, cultural and recreational sites across the nation. The treasures in this system – the first of its kind in the world – have been set aside by the American people to preserve, protect, and share the legacies of this land. People from all around the world visit national parks to experience America's story, marvel at the natural wonders, and have fun. Places like the Grand Canyon, the Statue of Liberty, and Gettysburg are popular destinations, but so too are the hundreds of lesser known yet equally meaningful gems like Rosie the Riveter in California, Boston Harbor Islands in Massachusetts, and Russell Cave in Alabama. The American system of national parks was the first of its kind in the world, and provides a living model for other nations wishing to establish and manage their own protected areas. The park service actively consults with these Nations, sharing what we've learned, and gaining knowledge from the experience of others. Beyond national parks, the National Park Service helps communities across America preserve and enhance important local heritage and close-to-home recreational opportunities. Grants and assistance are offered to register, record and save historic places; create community parks and local recreation facilities; conserve rivers and streams, and develop trails and greenways.

Københavns Kommune

kk.dk

Københavns Kommune er Danmarks største arbejdsplads med ca. 45.000 medarbejdere. Vi udvikler hovedstaden og servicerer over 500.000 københavnere. Vores mål er at fastholde og udvikle København som en af verdens bedste byer at bo i – og skabe øget vækst gennem viden, innovation og beskæftigelse. Find dit næste job her eller på www.kk.dk/job På vores karrieresite www.kk.dk/job kan du bl.a. se alle vores ledige stillinger og tilmelde dig vores jobagent. Her kan du også læse om vores medarbejdergoder.

Rijkswaterstaat

rijkswaterstaat.nl

Rijkswaterstaat is de uitvoeringsorganisatie van het Ministerie van Infrastructuur en Waterstaat. We beheren en ontwikkelen de rijkswegen, -vaarwegen en –wateren en zetten in op een duurzame leefomgeving. Samen met andere organisaties werken we aan een land dat beschermd is tegen overstromingen. Waar voldoende groen is, en voldoende en schoon water. En waar je vlot en veilig van A naar B kunt. Samenwerken aan een veilig, leefbaar en bereikbaar Nederland. Dat is Rijkswaterstaat. Bij Rijkswaterstaat werk je mee aan de toekomst van Nederland met de ruimte om jezelf te blijven ontwikkelen. Gun jezelf een baan met toekomst. Gun jezelf Rijkswaterstaat.

Assurance Maladie

ameli.fr

Travailler à l’Assurance Maladie, c’est donner une nouvelle dimension à votre métier et agir au quotidien pour la protection de notre système de santé. Participez à une grande diversité de projets dans un cadre bienveillant et soyez fier de contribuer à une mission essentielle : agir ensemble, protéger chacun. Depuis près de 80 ans, l'Assurance Maladie joue un rôle majeur au service de la solidarité nationale. Nous sommes convaincus que la clé de la pérennité du système de santé relève d'une responsabilité collective et réside dans l'implication forte de chacun de ses acteurs. Au sein de ce système, l'Assurance Maladie assume une triple mission : ⏺️ garantir un accès universel aux droits et permettre l'accès aux soins ⏺️ accompagner chacun dans la préservation de sa santé ⏺️ améliorer l'efficacité du système Toutes ses missions, l’Assurance Maladie les mène avec le souci d’assurer la meilleure qualité de service. Elle s’appuie pour cela sur un réseau de proximité qui couvre l’ensemble du territoire et l’engagement de plus de 80 000 collaborateurs qui agissent jour après jour à l’échelle départementale, régionale et nationale. Ensemble, au quotidien, ils font vivre ses valeurs d’universalité, de solidarité, de responsabilité et d’innovation.

Loading…

NEWS

U.S. Department of Health and Human Services (HHS) CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

March 11, 2026 12:57 PM

Senate Advances Bipartisan Health Care Cybersecurity Reform

On February 26, 2026, the Senate Health, Education, Labor, and Pensions (HELP) Committee voted 22-1 to advance the Health Care Cybersecurity and Resiliency...

Read Article

March 10, 2026 07:00 AM

HHS Final Rule on 42 CFR Part 2 Requires Targeted Updates to HIPAA Privacy Notices

Recent changes to 42 CFR Part 2 (“Part 2”) mean many covered entities must update their Health Insurance Portability and Accountability Act...

Read Article

March 06, 2026 08:00 AM

HHS adds cybersecurity guidance to healthcare sector self-assessment tool

Healthcare organizations can take advantage of new cybersecurity guidance from the federal government that will help them assess their...

Read Article

March 05, 2026 08:00 AM

HHS updates a free risk tool to help hospitals size up their cybersecurity exposure

HHS has updated its free RISC 2.0 toolkit with a new cybersecurity module, asking hospitals to assess digital threats alongside hurricanes.

Read Article

February 26, 2026 08:00 AM

Trends In Healthcare Data Breach Statistics

Healthcare data breach statistics from 2009 to 2026 in the United States, HIPAA violation statistics, and fines and penalties.

Read Article

February 26, 2026 08:00 AM

Senate moves one step closer to passing health care cyber reforms

A legislative package that would overhaul cybersecurity practices at the Department of Health and Human Services sailed through committee.

Read Article

February 20, 2026 08:00 AM

HHS intensifies scrutiny of third-party vendor cybersecurity | brief | SC Media

CyberScoop reports that the massive Change Healthcare breach in 2024, which stemmed from the lack of multi-factor authentication on a remote...

Read Article

February 04, 2026 08:00 AM

HHS-OIG Identifies Web Application Security Weaknesses at Large U.S. Hospital

An audit of a large Southeastern hospital by the Department of Health and Human Services Office of Inspector General (HHS-OIG) identified...

Read Article

February 03, 2026 08:00 AM

RELI Group Secures HHS IT Cybersecurity Support Task Order

RELI Group has received a task order from the Department of Health and Human Services to provide IT cybersecurity program support for the...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12191

SUMMARY

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdrive/modeld/modeld.py of the component Pickle Module. The manipulation results in deserialization. The attack is only possible with local access. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 7.8)

cvss2

Base Score: 6.8

Complexity: LOW

AV:L/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.1

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-12190

SUMMARY

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the component ai.mainfunc.genspark. The manipulation leads to improper authorization in handler for custom url scheme. The attack can only be performed from a local environment. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 5.3)

cvss2

Base Score: 4.3

Complexity: LOW

AV:L/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 4.8

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.8

REFERENCES

CVE-2026-12189

SUMMARY

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzmate. Executing a manipulation can lead to improper authorization in handler for custom url scheme. The attack can only be executed locally. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 5.3)

cvss2

Base Score: 4.3

Complexity: LOW

AV:L/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 1.9

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.8

REFERENCES

CVE-2026-12188

SUMMARY

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules/core/backend/app/controllers/concerns/grit/core/grit_entity_controller.rb of the component GritEntityController. Performing a manipulation results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

CVE-2026-12187

SUMMARY

A security vulnerability has been detected in GL.iNet GL-MT3000 up to 4.4.5. Affected by this vulnerability is an unknown functionality of the file /usr/bin/one_click_upgrade of the component Online Firmware Upgrade Handler. Such manipulation leads to command injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. Upgrading to version 4.7 addresses this issue. Upgrading the affected component is advised. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…