ARC
Company Details
Linkedin ID:
american-red-cross
Website:
Employees number:
33,242
Number of followers:
652,861
NAICS:
8135
Industry Type:
Homepage:
redcross.org
IP Addresses:
0
Company ID:
AME_1009635
Scan Status:
In-progress
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
American Red Cross Vendor Cyber Rating & Cyber Score
redcross.orgThe American Red Cross prevents and alleviates human suffering in the face of emergencies by mobilizing the power of volunteers and the generosity of donors. Each day, thousands of people – people just like you – provide compassionate care to those in need. Our network of generous donors, volunteers and employees share a mission of preventing and relieving suffering, here at home and around the world. We roll up our sleeves and donate time, money and blood. We learn or teach life-saving skills so our communities can be better prepared when the need arises. We do this every day because the Red Cross is needed - every day.
American Red Cross A.I CyberSecurity Scoring
ARC Risk Score (AI oriented)Between 750 and 799
ARC
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
ARC Global Score (TPRM)XXXX
ARC
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
ARC Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
American Red Cross
Ransomware
Rankiteo Explanation
Attack threatening the organization's existence
Description: A Switzerland-based IT company that stores and manages the data related to the International Committee of the Red Cross was attacked by hackers. The malware attack exposed information of over 500,000 people to hackers. The data accessed and stolen from the database includes 60 of Red Cross and Red Crescent National Societies.
ARC Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for ARC
Incidents vs Non-profit Organizations Industry Average (This Year)
No incidents recorded for American Red Cross in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for American Red Cross in 2026.
Incident Types ARC vs Non-profit Organizations Industry Avg (This Year)
No incidents recorded for American Red Cross in 2026.
Incident History — ARC (X = Date, Y = Severity)
ARC cyber incidents detection timeline including parent company and subsidiaries
ARC Company Subsidiaries
The American Red Cross prevents and alleviates human suffering in the face of emergencies by mobilizing the power of volunteers and the generosity of donors. Each day, thousands of people – people just like you – provide compassionate care to those in need. Our network of generous donors, volunteers and employees share a mission of preventing and relieving suffering, here at home and around the world. We roll up our sleeves and donate time, money and blood. We learn or teach life-saving skills so our communities can be better prepared when the need arises. We do this every day because the Red Cross is needed - every day.
Loading...
ARC Similar Companies
World Vision
World Vision is the largest child-focused private charity in the world. Our 33,000+ staff members working in nearly 100 countries have united with our incredible supporters to impact the lives of over 200 million vulnerable children by tackling the root causes of poverty. Through World Vision every
AIESEC
AIESEC develops leadership among youth aged 18 to 30 and contributes to strengthening the global employability market by providing an end-to-end international talent recruitment solution for Enterprises, NGOs, and Start-ups. AIESEC is the world's largest youth-run organization developing the leader
The Salvation Army
The Salvation Army is the nation's largest direct provider of social services. Annually, we help millions overcome poverty, addiction, and spiritual and economic hardships by preaching the gospel of Jesus Christ and meeting human needs in His name without discrimination in nearly every zip code.
UNICEF
UNICEF works in some of the world’s toughest places, to reach the world’s most disadvantaged children. To save their lives. To defend their rights. To help them fulfill their potential. Across 190 countries and territories, we work for every child, everywhere, every day, to build a better world fo
Transport for London
Every day, we help millions of people to make journeys across London: By Tube, bus, tram, car, bike – and more. People don’t associate us with journeys by river, on foot or via the air, but we help with that, too. Getting people to where they need to go has been our business for over 100 years, and
British Council
We support peace and prosperity by building connections, understanding and trust between people in the UK and countries worldwide. We uniquely combine the UK’s deep expertise in arts and culture, education and the English language, our global presence and relationships in over 100 countries, our un
International Rescue Committee
The International Rescue Committee responds to the world’s worst humanitarian crises and help people to survive, recover, and gain control of their future. Founded in 1933 at the request of Albert Einstein, the IRC offers lifesaving care and life-changing assistance to refugees and displaced peopl
Save the Children International
Save the Children Save the Children is the world's leading independent organisation for children. We work in around 120 countries. Our vision is to live in a world in which every child attains the right to survival, protection, development and participation. Last year Save the Children's prog
CASA DE LA FAMILIA
Casa de la Familia (CDLF) is a 501(c)(3) non-profit organization founded in 1996 by Clinical Psychologist Dr. Ana Nogales whose vision was to create an organization dedicated to ensuring long-lasting mental health success of children, youth, and families in response to psychological trauma. We prov
.png)
ARC CyberSecurity News
April 01, 2026 05:56 PM
Donate $1, get 10 miles: American backs Red Cross in 40th year
Mission Leader status means more than $3M a year for disaster relief; for a limited time, AAdvantage members get 10 bonus miles per $1...
March 31, 2026 02:00 PM
Avangrid Foundation Announces 2026 Partnership with American Red Cross
Avangrid Foundation will continue to support the American Red Cross Disaster Responder Program with $250000 donation.
March 24, 2026 07:00 AM
American Red Cross aids in Hawaii flood recovery
FLOOD RECOVERY: Executive Director of the American Red Cross, Todd James, joins FOX Weather to talk about how over 150 volunteers are...
March 23, 2026 07:00 AM
American Water Charitable Foundation Continues National Partnership During American Red Cross Month; Donates $250,000 for Disaster Relief
The American Water Charitable Foundation, a philanthropic non-profit organization established by American Water (NYSE: AWK), the largest...
March 21, 2026 07:00 AM
American Red Cross assisting after deadly north Columbus apartment fire
The American Red Cross is helping residents impacted by a deadly fire Friday afternoon at a 39-unit apartment building in north Columbus.
January 25, 2026 02:59 AM
Customer Story: American Red Cross
Efficiency, Compassion, and Trust — How The American Red Cross is Using a Crisis Communications Technology Tool to Enhance its Humanitarian Mission.
January 24, 2026 08:00 AM
Duke Energy Foundation awards $100,000 to the American Red Cross ahead of Winter Storm Fern
As Winter Storm Fern is forecast to bring severe winter weather across parts of Duke Energy's service territory, the Duke Energy Foundation...
January 07, 2026 08:00 AM
American Red Cross looking for donors and volunteers, people who donate now can enter drawing to win Super Bowl tickets
January is National Blood Donor Month.
December 05, 2025 08:00 AM
Emily Fortman Steps In as Interim Regional CEO for the American Red Cross Central & Southern Ohio Region
The American Red Cross Central & Southern Ohio Region has a new interim leader. Emily Fortman, a veteran of humanitarian and disaster...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
ARC CyberSecurity History Information
Official Website of American Red Cross
The official website of American Red Cross is http://www.redcross.org.
American Red Cross’s AI-Generated Cybersecurity Score
According to Rankiteo, American Red Cross’s AI-generated cybersecurity score is 763, reflecting their Fair security posture.
How many security badges does American Red Cross’ have ?
According to Rankiteo, American Red Cross currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has American Red Cross been affected by any supply chain cyber incidents ?
According to Rankiteo, American Red Cross has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does American Red Cross have SOC 2 Type 1 certification ?
According to Rankiteo, American Red Cross is not certified under SOC 2 Type 1.
Does American Red Cross have SOC 2 Type 2 certification ?
According to Rankiteo, American Red Cross does not hold a SOC 2 Type 2 certification.
Does American Red Cross comply with GDPR ?
According to Rankiteo, American Red Cross is not listed as GDPR compliant.
Does American Red Cross have PCI DSS certification ?
According to Rankiteo, American Red Cross does not currently maintain PCI DSS compliance.
Does American Red Cross comply with HIPAA ?
According to Rankiteo, American Red Cross is not compliant with HIPAA regulations.
Does American Red Cross have ISO 27001 certification ?
According to Rankiteo,American Red Cross is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of American Red Cross
American Red Cross operates primarily in the Non-profit Organizations industry.
Number of Employees at American Red Cross
American Red Cross employs approximately 33,242 people worldwide.
Subsidiaries Owned by American Red Cross
American Red Cross presently has no subsidiaries across any sectors.
American Red Cross’s LinkedIn Followers
American Red Cross’s official LinkedIn profile has approximately 652,861 followers.
NAICS Classification of American Red Cross
American Red Cross is classified under the NAICS code 8135, which corresponds to Others.
American Red Cross’s Presence on Crunchbase
Yes, American Red Cross has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/american-red-cross.
American Red Cross’s Presence on LinkedIn
Yes, American Red Cross maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/american-red-cross.
Cybersecurity Incidents Involving American Red Cross
As of April 05, 2026, Rankiteo reports that American Red Cross has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
American Red Cross has an estimated 21,885 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at American Red Cross ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
Incident Details
Can you provide details on each incident ?
Title: Data Breach at Switzerland-based IT Company Managing Red Cross Data
Description: A Switzerland-based IT company that stores and manages the data related to the International Committee of the Red Cross was attacked by hackers. The malware attack exposed information of over 500,000 people to hackers. The data accessed and stolen from the database includes 60 of Red Cross and Red Crescent National Societies.
Type: Data Breach
Attack Vector: Malware
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach AME15579222
Data Compromised: Personal information of over 500,000 people, Data from 60 red cross and red crescent national societies
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personal Information, Organizational Data and .
Which entities were affected by each incident ?
Incident : Data Breach AME15579222
Entity Name: Switzerland-based IT Company
Entity Type: IT Services
Industry: Information Technology
Location: Switzerland
Incident : Data Breach AME15579222
Entity Name: International Committee of the Red Cross
Entity Type: Non-profit Organization
Industry: Humanitarian Aid
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach AME15579222
Type of Data Compromised: Personal information, Organizational data
Number of Records Exposed: Over 500,000
Additional Questions
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Personal information of over 500,000 people, Data from 60 Red Cross and Red Crescent National Societies and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Data from 60 Red Cross and Red Crescent National Societies, Personal information of over 500 and000 people.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 500.0K.
.png)
Latest Global CVEs (Not Company-Specific)
Description
nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, two peer-facing consensus request handlers assume that the history index is always available and call blockchain.history_store.history_index().unwrap() directly. That assumption is false by construction. HistoryStoreProxy::history_index() explicitly returns None for the valid HistoryStoreProxy::WithoutIndex state. when a full node is syncing or otherwise running without the history index, a remote peer can send RequestTransactionsProof or RequestTransactionReceiptsByAddress and trigger an Option::unwrap() panic on the request path. This issue has been patched in version 1.3.0.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Description
PraisonAI is a multi-agent teams system. Prior to version 1.5.95, FileTools.download_file() in praisonaiagents validates the destination path but performs no validation on the url parameter, passing it directly to httpx.stream() with follow_redirects=True. An attacker who controls the URL can reach any host accessible from the server including cloud metadata services and internal network services. This issue has been patched in version 1.5.95.
Risk Information
cvss3
Base: 8.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, OAuthManager.validate_token() returns True for any token not found in its internal store, which is empty by default. Any HTTP request to the MCP server with an arbitrary Bearer token is treated as authenticated, granting full access to all registered tools and agent capabilities. This issue has been patched in version 4.5.97.
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, the PraisonAI Gateway server accepts WebSocket connections at /ws and serves agent topology at /info with no authentication. Any network client can connect, enumerate registered agents, and send arbitrary messages to agents and their tool sets. This issue has been patched in version 4.5.97.
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.90, MCPToolIndex.search_tools() compiles a caller-supplied string directly as a Python regular expression with no validation, sanitization, or timeout. A crafted regex causes catastrophic backtracking in the re engine, blocking the Python thread for hundreds of seconds and causing a complete service outage. This issue has been patched in version 4.5.90.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=american-red-cross' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
