American Hospital Dubai Company Cyber Security Posture
ahdubai.comThe American Hospital Dubai is a 254-bed private hospital providing healthcare to the highest US standards and is the leader and pioneer in international accreditation and recognition. The hospital serves patients across the region and includes several specialist centers โ Comprehensive Cancer Center, Orthopedics and Total Joint Replacement Center for adults, The Heart Center, Diabetes Program, and Cochlear Implant Center. All our physicians are Western Board Certified. The American Hospital Satellite Clinics in Dubai Media City, Al Barsha, Al Khawaneej, Jumeirah, Mira, Dubai Hills & Nad Al Sheba now offer the same quality of care within the community. The hospital is the first Middle East member of the prestigious Mayo Clinic Care Network.
AHD Company Details
american-hospital-dubai
3650 employees
445600.0
62
Hospitals and Health Care
ahdubai.com
Scan still pending
AME_2137830
In-progress
AHD Risk Score (AI oriented)Between 800 and 900
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
AHD Global Score.png)
American Hospital Dubai Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 800 and 900 |
American Hospital Dubai Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| American Hospital Dubai | Ransomware | 100 | 6/2025 | AME300061725 | Link | ||
Rankiteo Explanation : Attack threatening the organizationโs existenceDescription: The Gunra ransomware group escalated its attack on American Hospital Dubai (AHD) by leaking 40 terabytes of sensitive data, including personal demographics, credit card details, Emirates ID numbers, health records, and internal documents. The group initially claimed to have exfiltrated 450 million patient records, totaling 4 terabytes of uncompressed data. The leaked data includes financial records, payroll details, and sensitive patient information, posing risks of identity theft and fraud. The hospital has yet to issue an official statement, raising concerns about transparency and compliance with UAEโs strict cybersecurity laws. | |||||||
| Dubai Hospital | Ransomware | 100 | 7/2025 | AME245073125 | Link | ||
Rankiteo Explanation : Attack threatening the organizationโs existenceDescription: In May 2025, the Gunra ransomware group allegedly leaked 40 terabytes of sensitive data from a Dubai hospital, highlighting their willingness to target critical healthcare infrastructure. This attack not only compromised patient data but also disrupted the hospital's operations, putting patient care at risk. The sophisticated nature of the ransomware, with its multi-threading capability and hybrid encryption scheme, made it particularly challenging to mitigate. | |||||||
American Hospital Dubai Company Subsidiaries
The American Hospital Dubai is a 254-bed private hospital providing healthcare to the highest US standards and is the leader and pioneer in international accreditation and recognition. The hospital serves patients across the region and includes several specialist centers โ Comprehensive Cancer Center, Orthopedics and Total Joint Replacement Center for adults, The Heart Center, Diabetes Program, and Cochlear Implant Center. All our physicians are Western Board Certified. The American Hospital Satellite Clinics in Dubai Media City, Al Barsha, Al Khawaneej, Jumeirah, Mira, Dubai Hills & Nad Al Sheba now offer the same quality of care within the community. The hospital is the first Middle East member of the prestigious Mayo Clinic Care Network.
Access Data Using Our API
Get company history
Rapid.png)
AHD Cyber Security News
American Hospital Dubai breach purportedly compromised 450M records
Cybernews reports that American Hospital Dubai, the leading private healthcare provider in the United Arab Emirates city, was claimed toย ...
Hackers claim massive data breach at American Hospital Dubai
A ransomware gang has claimed that it stole 450 million records from patients of one of Dubai's most prestigious hospitals, and they'reย ...
Gunra Ransomware Group Allegedly Leaks 40TB of Data from American Hospital
The Gunra ransomware group escalated its attack on American Hospital Dubai (AHD), a premier healthcare facility in Dubai, UAE, by releasingย ...
Millions of patient records hacked in Dubai
A hacker group claims to have stolen a trove of patient data from one of Dubai's leading hospitals, a major breach as health care providers inย ...
Ransomware group Gunra claims to have exfiltrated 450 million patient records from American Hospital Dubai (1)
A relatively new ransomware group calling themself โGunraโ has shown it has no compunction about attacking hospitals.
Cybersecurity jobs available right now: February 11, 2025
As a Cyber Security Analyst, you will monitor systems security posture and seek improvements (eg, vulnerability management) on a continuous basis.
Abu Dhabi Guidelines Offer Blueprint for Cybersecurity in Health
The United Arab Emirates has refined its regulatory strategy for improving cybersecurity in healthcare.
EY US - Home | Building a better working world
We embrace our responsibility as independent auditors to perform high-quality audits that promote trust and confidence in the capital markets.
Oracle Health data center maintenance triggered EHR outage at CHS
Community Health Systems has reportedly experienced IT outages at multiple hospitals after data accessed by its Oracle Health electronic healthย ...
AHD Similar Companies
University Health Network
University Health Network (UHN) is Canada's largest research hospital, which includes Toronto General and Toronto Western Hospitals, Princess Margaret Cancer Centre, the Toronto Rehabilitation Institute and the Michener Institute for Education at UHN. The scope of research and complexity of cases at
Humana AB
Humana โยงr ett ledande nordiskt omsorgsfโโretag som erbjuder tjโยงnster inom individ- och familjeomsorg, personlig assistans, โยงldreomsorg och bostโยงder med sโยงrskild service enligt LSS. Humana har cirka 16 000 engagerade medarbetare i Sverige, Norge, Finland och Danmark som utfโโr omsorgstjโยงnster
St. Luke's Health System
As the only Idaho-based, not-for-profit health system, St. Lukeโs Health System is dedicated to our mission โTo improve the health of people in the communities we serve.โ Today that means not only treating you when youโre sick or hurt, but doing everything we can to help you be as healthy as possibl
Medtronic Digital Surgery
Touch Surgeryโรยข from Medtronic helps surgeons and health systems deliver consistent and high-quality surgery through AI, data and visualization. The Touch Surgeryโรยข ecosystem consists of mobile-based education, as well as data and analytics. The Touch Surgeryโรยข app, the worldโรรดs first academ
Nationwide Children's Hospital
Nationwide Childrenโs is one of America's largest pediatric hospitals, an international leader in research and is ranked in all 10 specialties on U.S. News & World Reportโs 2024-25 โAmericaโs Best Childrenโs Hospitalsโ list. Our staff, comprised of 1,600 medical professionals and over 15,000 employe
Hospital Authority
The Hospital Authority (HA) is a statutory body established under the Hospital Authority Ordinance in 1990. We have been responsible for managing Hong Kong's public hospitals services since December 1991. We are accountable to the Hong Kong Special Administrative Region Government through the Secret
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
AHD CyberSecurity History Information
How many cyber incidents has AHD faced?
Total Incidents: According to Rankiteo, AHD has faced 2 incidents in the past.
What types of cybersecurity incidents have occurred at AHD?
Incident Types: The types of cybersecurity incidents that have occurred incidents Ransomware.
Incident Details
Can you provide details on each incident?
Incident : Ransomware
Title: Gunra Ransomware Linux Variant
Description: A sophisticated new Linux variant of Gunra ransomware has emerged, marking a significant escalation in the threat groupโs cross-platform capabilities since its initial discovery in April 2025. The ransomware, which drew inspiration from the notorious Conti ransomware techniques, has rapidly expanded its operational scope beyond Windows systems to target Linux environments, demonstrating the groupโs strategic evolution toward comprehensive enterprise network compromise.
Date Detected: April 2025
Type: Ransomware
Attack Vector: Linux systems
Threat Actor: Gunra ransomware group
Motivation: Financial gain, data exfiltration
Incident : Ransomware
Title: Gunra Ransomware Attack on American Hospital Dubai
Description: The Gunra ransomware group escalated its attack on American Hospital Dubai (AHD) by releasing new evidence of a major cyberattack, claiming to have leaked 40 terabytes of sensitive data including personal demographics, credit card details, Emirates ID numbers, health records, and internal documents.
Date Detected: 2025-06-04
Date Publicly Disclosed: 2025-06-16
Type: Ransomware
Attack Vector: Double-extortion tactics
Threat Actor: Gunra ransomware group
Motivation: Ransom
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident?
Incident : Ransomware AME245073125
Data Compromised: 40 terabytes of sensitive data from a Dubai hospital
Systems Affected: Linux environments, Windows systems
Incident : Ransomware AME300061725
Data Compromised: Personal demographics, Credit card details, Emirates ID numbers, Health records, Internal documents, Financial records, Payroll details, Sensitive patient information
Systems Affected: Virtual machines, Storage systems
Brand Reputation Impact: Intensified scrutiny and concerns about transparency
Identity Theft Risk: High
Payment Information Risk: High
What types of data are most commonly compromised in incidents?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Sensitive data, Personal demographics, Credit card details, Emirates ID numbers, Health records, Internal documents, Financial records, Payroll details and Sensitive patient information.
Which entities were affected by each incident?
Incident : Ransomware AME245073125
Industry: ['Manufacturing', 'Healthcare', 'Information Technology', 'Agriculture', 'Law', 'Consulting services']
Location: Brazil, Japan, Canada, Turkey, South Korea, Taiwan, United States
Incident : Ransomware AME300061725
Entity Type: Healthcare facility
Industry: Healthcare
Location: Dubai, UAE
Size: 254-bed facility
Data Breach Information
What type of data was compromised in each breach?
Incident : Ransomware AME245073125
Type of Data Compromised: Sensitive data
Sensitivity of Data: High
Data Exfiltration: True
Data Encryption: True
Incident : Ransomware AME300061725
Type of Data Compromised: Personal demographics, Credit card details, Emirates ID numbers, Health records, Internal documents, Financial records, Payroll details, Sensitive patient information
Number of Records Exposed: 40 terabytes of data, 450 million patient records
Sensitivity of Data: High
Data Exfiltration: Yes
Data Encryption: Yes
Personally Identifiable Information: Yes
Ransomware Information
Was ransomware involved in any of the incidents?
Incident : Ransomware AME245073125
Ransomware Strain: Gunra
Data Encryption: True
Data Exfiltration: True
Incident : Ransomware AME300061725
Ransomware Strain: Gunra
Data Encryption: Yes
Data Exfiltration: Yes
Lessons Learned and Recommendations
What lessons were learned from each incident?
Incident : Ransomware AME300061725
Lessons Learned: The urgent need for robust cybersecurity measures and transparent communication to protect patient trust and safety.
What recommendations were made to prevent future incidents?
Incident : Ransomware AME300061725
Recommendations: Automate threat response with ANY.RUNโs TI FeedsโEnrich alerts and block malicious IPs across all endpoints.
What are the key lessons learned from past incidents?
Key Lessons Learned: The key lessons learned from past incidents are The urgent need for robust cybersecurity measures and transparent communication to protect patient trust and safety.
What recommendations has the company implemented to improve cybersecurity?
Implemented Recommendations: The company has implemented the following recommendations to improve cybersecurity: Automate threat response with ANY.RUNโs TI FeedsโEnrich alerts and block malicious IPs across all endpoints..
References
Where can I find more information about each incident?
Incident : Ransomware AME245073125
Source: Trend Micro
Where can stakeholders find additional resources on cybersecurity best practices?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Trend Micro, and Source: TwitterUrl: https://t.co/YvW25olKl0Date Accessed: 2025-06-16.
Investigation Status
What is the current status of the investigation for each incident?
Incident : Ransomware AME300061725
Investigation Status: Authorities investigating the breachโs scope
Additional Questions
General Information
Who was the attacking group in the last incident?
Last Attacking Group: The attacking group in the last incident were an Gunra ransomware group and Gunra ransomware group.
Incident Details
What was the most recent incident detected?
Most Recent Incident Detected: The most recent incident detected was on April 2025.
What was the most recent incident publicly disclosed?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2025-06-16.
Impact of the Incidents
What was the most significant data compromised in an incident?
Most Significant Data Compromised: The most significant data compromised in an incident were 40 terabytes of sensitive data from a Dubai hospital, Personal demographics, Credit card details, Emirates ID numbers, Health records, Internal documents, Financial records, Payroll details and Sensitive patient information.
What was the most significant system affected in an incident?
Most Significant System Affected: The most significant system affected in an incident were Linux environments, Windows systems and Virtual machines, Storage systems.
Data Breach Information
What was the most sensitive data compromised in a breach?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were 40 terabytes of sensitive data from a Dubai hospital, Personal demographics, Credit card details, Emirates ID numbers, Health records, Internal documents, Financial records, Payroll details and Sensitive patient information.
What was the number of records exposed in the most significant breach?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 450.0M.
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was The urgent need for robust cybersecurity measures and transparent communication to protect patient trust and safety.
What was the most significant recommendation implemented to improve cybersecurity?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Automate threat response with ANY.RUNโs TI FeedsโEnrich alerts and block malicious IPs across all endpoints..
References
What is the most recent source of information about an incident?
Most Recent Source: The most recent source of information about an incident are Trend Micro and Twitter.
What is the most recent URL for additional resources on cybersecurity best practices?
Most Recent URL for Additional Resources: The most recent URL for additional resources on cybersecurity best practices is https://t.co/YvW25olKl0 .
Investigation Status
What is the current status of the most recent investigation?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Authorities investigating the breachโs scope.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
