Gilead Sciences
Company Details
Linkedin ID:
gilead-sciences
Website:
Employees number:
14,605
Number of followers:
792,598
NAICS:
541714
Industry Type:
Homepage:
gilead.com
IP Addresses:
245
Company ID:
GIL_6922720
Scan Status:
Completed
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
Gilead Sciences Vendor Cyber Rating & Cyber Score
gilead.comAt Gilead, we set – and achieve – bold ambitions to create a healthier world for all people. From our pioneering virology medicines to our growing impact in oncology, we're delivering innovations once thought impossible in medicine. Our focus goes beyond medicines, and we also strive to remedy health inequities and break down barriers to care. We empower our people to tackle these challenges, and we’re all united in our commitment to help millions of people live healthier lives. Social Media Guidelines: https://www.gilead.com/social-media-guidelines
Gilead Sciences A.I CyberSecurity Scoring
Gilead Sciences Risk Score (AI oriented)Between 800 and 849
Gilead Sciences
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Gilead Sciences Global Score (TPRM)XXXX
Gilead Sciences
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Gilead Sciences Company CyberSecurity News & History
Past Incidents
2
Attack Types
2
Gilead Sciences, Inc.
Breach
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: On April 2, 2025, the Maine Office of the Attorney General disclosed a data breach involving Gilead Sciences, Inc., stemming from an inadvertent mailing error by Billing Document Specialists. The incident, detected on February 18, 2025, resulted in the unauthorized disclosure of sensitive personal information specifically Social Security numbers of 12,224 individuals, including 4 residents in California. The breach occurred due to a procedural failure in handling physical mail, leading to the exposure of confidential financial identifiers without evidence of malicious cyber activity or further exploitation. While the exposed data carries high sensitivity, there were no reports of identity theft, financial fraud, or systemic compromise linked to the incident. The company likely initiated remediation measures, such as notifications to affected parties and regulatory bodies, but the breach’s scope remained contained to document mishandling rather than a targeted cyberattack or systemic vulnerability exploitation.
Gilead Sciences
Cyber Attack
Rankiteo Explanation
Attack threatening the organization's existence
Description: The employees of drugmaker company Gilead Sciences were targeted by some hackers linked to Iran. The web domains and hosting servers and fake email logins were used to compromise the company's servers.
Gilead Sciences Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Gilead Sciences
Incidents vs Biotechnology Research Industry Average (This Year)
No incidents recorded for Gilead Sciences in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Gilead Sciences in 2026.
Incident Types Gilead Sciences vs Biotechnology Research Industry Avg (This Year)
No incidents recorded for Gilead Sciences in 2026.
Incident History — Gilead Sciences (X = Date, Y = Severity)
Gilead Sciences cyber incidents detection timeline including parent company and subsidiaries
Gilead Sciences Company Subsidiaries
At Gilead, we set – and achieve – bold ambitions to create a healthier world for all people. From our pioneering virology medicines to our growing impact in oncology, we're delivering innovations once thought impossible in medicine. Our focus goes beyond medicines, and we also strive to remedy health inequities and break down barriers to care. We empower our people to tackle these challenges, and we’re all united in our commitment to help millions of people live healthier lives. Social Media Guidelines: https://www.gilead.com/social-media-guidelines
Loading...
Gilead Sciences Similar Companies
Syneos Health® is a leading fully integrated biopharmaceutical solutions organization built to accelerate customer success. We translate unique clinical, medical affairs and commercial insights into outcomes to address modern market realities. We bring together a talented team of professionals w
Thermo Fisher Scientific
About Thermo Fisher Scientific Thermo Fisher Scientific Inc. is the world leader in serving science, with annual revenue of approximately $40 billion. Our Mission is to enable our customers to make the world healthier, cleaner and safer. Whether our customers are accelerating life sciences research,
CSL is a leading global biopharma company with a dynamic portfolio of lifesaving medicines, including those that treat haemophilia and immune deficiencies, vaccines to prevent influenza, and therapies in iron deficiency, dialysis and nephrology. Since our start in 1916, we have been driven by our pr
Fortrea
Fortrea (Nasdaq: FTRE) is a leading global clinical research organization (CRO) dedicated to providing innovative clinical development solutions to the life sciences industry. With over 30 years of clinical research experience, Fortrea has evolved from Covance and Labcorp into a pureplay CRO built f
Genentech
About Genentech We're passionate about finding solutions for people facing the world's most difficult-to-treat conditions. That is why we use cutting-edge science to create and deliver innovative medicines around the globe. To us, science is personal. Making a difference in the lives of millions s
Roche is a global pioneer in pharmaceuticals and diagnostics focused on advancing science to improve people’s lives. The combined strengths of pharmaceuticals and diagnostics under one roof have made Roche the leader in personalised healthcare – a strategy that aims to fit the right treatment to eac
NIH is the only agency of its kind. We impact the health of the country and the world through unique and innovative medical research. Did you know that NIH is the largest public funder of biomedical research in the world, investing more than $32 billion a year to enhance life, and reduce illness an
Biocon
Biocon: Enhancing Global Healthcare Biocon Limited, publicly listed in 2004, is India's largest and fully-integrated, innovation-led biopharmaceutical company. It is an emerging global biopharmaceutical enterprise serving customers in over 120 countries. Driven by a vision to enhance global heal
bioMérieux
A family-owned company, bioMérieux has grown to become a world leader in the field of in vitro diagnostics. Our entrepreneurial adventure, begun over a century ago, is driven by an unrelenting commitment to improve public health worldwide. Since 1963, we've been paving the way in the field of in v
.png)
Gilead Sciences CyberSecurity News
February 04, 2026 08:00 AM
Blue Cloud Ventures Co-Leads $42M Series A for Cybersecurity Firm RapidFort
Boulder Ventures, founded in the 1980s by Baltimore lawyers Larry Macks and Josh Fidler, has joined a $42 million Series A for RapidFort,...
January 23, 2026 08:00 AM
DOJ’s record-breaking 2025 False Claims Act recoveries and key healthcare fraud enforcement trends
On January 12, 2026, the Department of Justice (DOJ) announced that False Claims Act (FCA) settlements and judgments exceeded $6.8 billion...
December 06, 2025 08:00 AM
Gilead Sciences Stock (GILD) Outlook 2026: Latest News, Trodelvy Data, Dividend and Analyst Forecasts
Gilead Sciences shares closed at $121.22 on December 5, 2025, about 6% below their 52-week high.
December 06, 2025 08:00 AM
BlackBerry Stock Outlook: Can BB’s Cybersecurity and QNX Wins Power the Next Leg Higher in 2025–2026?
As of 6 December 2025, BlackBerry Limited (NYSE: BB; TSX: BB) is back on many traders' and long‑term investors' watchlists.
October 25, 2025 07:00 AM
Gilead Sciences Stock Forecast: Where Analysts See the Stock Going by 2027
Here's why analysts believe Gilead Sciences (NASDAQ: GILD) could see about 3% upside by 2027, driven by steady HIV growth, new drug launches...
June 25, 2025 07:00 AM
Building breakthroughs: Gilead invests in U.S. innovation
Gilead invests in world-class science and is pursuing innovation across the therapeutic areas of virology, oncology and inflammation.
June 19, 2025 07:00 AM
US approves Gilead's twice-yearly injection to prevent HIV
FDA approves Gilead Sciences' groundbreaking HIV prevention injection, Yeztugo, with 99.9% effectiveness, but high cost raises concerns.
March 13, 2025 08:59 PM
How Greater Diversity Can Help Fill the Cyber Talent Gap
With the acceleration of digital transformation, the cyber talent gap has widened to a chasm. According to the most recent Cybersecurity Workforce Study by...
January 31, 2025 08:00 AM
Cognizant, Gilead Sciences extend partnership for genAI
The aim of the collaboration is to deliver better cost leadership, productivity enhancement and elicit greater value from the existing...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Gilead Sciences CyberSecurity History Information
Official Website of Gilead Sciences
The official website of Gilead Sciences is http://www.gilead.com.
Gilead Sciences’s AI-Generated Cybersecurity Score
According to Rankiteo, Gilead Sciences’s AI-generated cybersecurity score is 804, reflecting their Good security posture.
How many security badges does Gilead Sciences’ have ?
According to Rankiteo, Gilead Sciences currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Gilead Sciences been affected by any supply chain cyber incidents ?
According to Rankiteo, Gilead Sciences has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Gilead Sciences have SOC 2 Type 1 certification ?
According to Rankiteo, Gilead Sciences is not certified under SOC 2 Type 1.
Does Gilead Sciences have SOC 2 Type 2 certification ?
According to Rankiteo, Gilead Sciences does not hold a SOC 2 Type 2 certification.
Does Gilead Sciences comply with GDPR ?
According to Rankiteo, Gilead Sciences is not listed as GDPR compliant.
Does Gilead Sciences have PCI DSS certification ?
According to Rankiteo, Gilead Sciences does not currently maintain PCI DSS compliance.
Does Gilead Sciences comply with HIPAA ?
According to Rankiteo, Gilead Sciences is not compliant with HIPAA regulations.
Does Gilead Sciences have ISO 27001 certification ?
According to Rankiteo,Gilead Sciences is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Gilead Sciences
Gilead Sciences operates primarily in the Biotechnology Research industry.
Number of Employees at Gilead Sciences
Gilead Sciences employs approximately 14,605 people worldwide.
Subsidiaries Owned by Gilead Sciences
Gilead Sciences presently has no subsidiaries across any sectors.
Gilead Sciences’s LinkedIn Followers
Gilead Sciences’s official LinkedIn profile has approximately 792,598 followers.
NAICS Classification of Gilead Sciences
Gilead Sciences is classified under the NAICS code 541714, which corresponds to Research and Development in Biotechnology (except Nanobiotechnology).
Gilead Sciences’s Presence on Crunchbase
Yes, Gilead Sciences has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/gilead-sciences.
Gilead Sciences’s Presence on LinkedIn
Yes, Gilead Sciences maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/gilead-sciences.
Cybersecurity Incidents Involving Gilead Sciences
As of April 02, 2026, Rankiteo reports that Gilead Sciences has experienced 2 cybersecurity incidents.
Number of Peer and Competitor Companies
Gilead Sciences has an estimated 4,635 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Gilead Sciences ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach and Cyber Attack.
How does Gilead Sciences detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an communication strategy with public disclosure via maine office of the attorney general..
Incident Details
Can you provide details on each incident ?
Title: Cyber Attack on Gilead Sciences by Iran-Linked Hackers
Description: The employees of drugmaker company Gilead Sciences were targeted by some hackers linked to Iran. The web domains and hosting servers and fake email logins were used to compromise the company's servers.
Type: Cyber Attack
Attack Vector: Phishing, Server Compromise
Threat Actor: Iran-Linked Hackers
Title: Gilead Sciences, Inc. Data Breach via Mailing Error
Description: The Maine Office of the Attorney General reported a data breach involving Gilead Sciences, Inc. The breach occurred due to an inadvertent disclosure of 12,224 individuals' information, including Social Security numbers, through a mailing error by Billing Document Specialists. The incident affected 4 residents in California.
Date Detected: 2025-02-18
Date Publicly Disclosed: 2025-04-02
Type: Data Breach
Attack Vector: Human Error (Mailing Error)
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Fake Email Logins.
Impact of the Incidents
What was the impact of each incident ?
Incident : Cyber Attack GIL1527222
Systems Affected: Servers
Incident : Data Breach GIL957091725
Data Compromised: Social security numbers
Brand Reputation Impact: Potential reputational harm due to exposure of sensitive personal data
Identity Theft Risk: High (due to exposure of Social Security numbers)
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Social Security Numbers and .
Which entities were affected by each incident ?
Incident : Cyber Attack GIL1527222
Entity Name: Gilead Sciences
Entity Type: Company
Industry: Pharmaceuticals
Incident : Data Breach GIL957091725
Entity Name: Gilead Sciences, Inc.
Entity Type: Corporation
Industry: Biopharmaceutical
Location: United States
Customers Affected: 12,224 individuals (including 4 residents in California)
Incident : Data Breach GIL957091725
Entity Name: Billing Document Specialists
Entity Type: Third-Party Vendor
Industry: Document Processing
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach GIL957091725
Communication Strategy: Public disclosure via Maine Office of the Attorney General
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach GIL957091725
Type of Data Compromised: Social security numbers
Number of Records Exposed: 12,224
Sensitivity of Data: High (Personally Identifiable Information)
Data Exfiltration: No (inadvertent disclosure via mailing error)
Personally Identifiable Information: Yes
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Data Breach GIL957091725
Regulatory Notifications: Maine Office of the Attorney General
References
Where can I find more information about each incident ?
Incident : Data Breach GIL957091725
Source: Maine Office of the Attorney General
Date Accessed: 2025-04-02
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Office of the Attorney GeneralDate Accessed: 2025-04-02.
Investigation Status
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Public disclosure via Maine Office of the Attorney General.
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Cyber Attack GIL1527222
Entry Point: Fake Email Logins,
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Breach GIL957091725
Root Causes: Human error by third-party vendor (Billing Document Specialists) leading to inadvertent disclosure of sensitive data via mail.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Iran-Linked Hackers.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2025-02-18.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2025-04-02.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Social Security numbers and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was Servers.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was Social Security numbers.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 12.2K.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Maine Office of the Attorney General.
Initial Access Broker
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=gilead-sciences' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
