Cherry Health A.I CyberSecurity Scoring
Cherry Health
Company Information
Website:https://cherryhealth.org/
Employees number:491
Number of followers:3,511
NAICS:62
Industry Type:Hospitals and Health Care
Homepage:cherryhealth.org
Cherry Health Risk Score (AI oriented)
Between 550 and 599
Cherry HealthHospitals and Health Care
Updated:
22/06/2026
22/06/2026
569/1000
Very Poor
Ca
Cherry Health Global Score (TPRM)
xxxx
Cherry HealthHospitals and Health Care
Score locked

Cherry HealthVery Poor
Current Score
569Ca (VERY POOR)
01000
2 incidents
-107 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
571
JUNE 2026
569
MAY 2026
567
APRIL 2026
693
Ransomware
19 Apr 2026 • Cherry Health
Cherry Health: Cherry HealthData Breach
Cherry Health Data Breach Affecting Over 184,000 Individuals
562
CRITICAL-131
CHE1781929626
Cherry Health Reports Data Breach Affecting Over 184,000 Individuals
Michigan-based healthcare provider Cherry Health (operating as Cherry Street Services) has disclosed a data breach involving unauthorized access to its network. The incident, detected on or around April 19, 2026, coincided with a days-long network outage suspected to be the result of a ransomware attack.
An investigation, supported by third-party cybersecurity specialists, confirmed that an unauthorized actor accessed and exfiltrated sensitive data from Cherry Health’s systems. The compromised information varies by individual but may include:
- Personal details: Names, addresses, phone numbers, dates of birth, and Social Security numbers
- Healthcare data: Health insurance IDs, patient ID numbers, provider names, and service dates
Cherry Health has stated that over 184,000 individuals were potentially affected, though the full scope of the breach remains under review. The organization plans to notify impacted individuals in writing once its investigation concludes.
Legal teams are currently assessing whether a class action lawsuit can be filed on behalf of affected individuals, with attorneys seeking input from those who received breach notifications or believe their data was exposed. The breach is distinct from a separate December 2023 incident that also impacted Cherry Health.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
MARCH 2026
693
FEBRUARY 2026
691
JANUARY 2026
764
DECEMBER 2025
689
NOVEMBER 2025
688
OCTOBER 2025
686
SEPTEMBER 2025
685
AUGUST 2025
683
JULY 2025
764
Breach
17 Jul 2025 • Cherry Health
Cherry Health and Coastal Carolina Centers of Urology and Surgery: Blue Fish Pediatrics Data Breach Affects More Than 41,000 Texas Patients
Multiple Healthcare Data Breaches Expose Sensitive Patient Information Across U.S.
681
CRITICAL-83
COACHE1782138294
Multiple Healthcare Data Breaches Expose Sensitive Patient Information Across U.S.
A series of cyberattacks targeting healthcare providers in 2025 and 2026 has compromised the personal and medical data of tens of thousands of patients nationwide.
Blue Fish Pediatrics (Texas)
In July 2025, Houston-based Blue Fish Pediatrics detected unauthorized access to its IT systems between July 11 and July 17. A forensic investigation revealed that threat actors accessed files containing sensitive patient data, including full names, dates of birth, Social Security numbers, driver’s license numbers, medical records, diagnoses, lab results, and treatment details. While the total number of affected individuals remains undisclosed, the Texas Attorney General reported that 41,485 Texas residents were impacted. Affected patients are being notified and offered complimentary credit monitoring if their Social Security numbers were exposed.
Cherry Health (Michigan)
Michigan’s largest non-profit Federally Qualified Health Center, Cherry Health, announced a breach on June 18, 2026, after detecting suspicious network activity on April 19, 2026. Unauthorized access led to the theft of patient data, including names, addresses, insurance details, and, in some cases, Social Security numbers. The organization has not reported any misuse of the stolen data but is implementing additional security measures. The full scope of the breach is still under review.
Coastal Carolina Centers of Urology and Surgery (South Carolina)
The Rivertown Surgery Center in Conway, South Carolina, reported a ransomware attack by the Qilin ransomware group, which accessed patient records on August 26, 2025. The breach exposed names and health records of 2,886 individuals, with the group posting stolen data on its dark web leak site on September 4, 2025. Notifications were sent to affected patients in May 2026.
Regence (Oregon)
Regence Blue Cross Blue Shield of Oregon disclosed a breach affecting 2,856 members after unauthorized actors accessed digital accounts between January 1 and April 15, 2026. The attackers redeemed wellness rewards for gift cards, potentially exposing account information. The incident was reported to federal authorities, though no further details on data exposure have been released.
These breaches highlight ongoing vulnerabilities in healthcare cybersecurity, with attackers targeting sensitive patient data across multiple states.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for Cherry Health ??
What was Cherry Health's A.I Rankiteo Cyber Score in June 2026 ??
What was Cherry Health's A.I Rankiteo Cyber Score in May 2026 ??
What was Cherry Health's A.I Rankiteo Cyber Score in April 2026 ??
What was Cherry Health's A.I Rankiteo Cyber Score in March 2026 ??
What was Cherry Health's A.I Rankiteo Cyber Score in February 2026 ??
What was Cherry Health's A.I Rankiteo Cyber Score in January 2026 ??
What was Cherry Health's A.I Rankiteo Cyber Score in December 2025 ??
What was Cherry Health's A.I Rankiteo Cyber Score in November 2025 ??
What was Cherry Health's A.I Rankiteo Cyber Score in October 2025 ??
What was Cherry Health's A.I Rankiteo Cyber Score in September 2025 ??
What was Cherry Health's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on Cherry Health's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with Cherry Health ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view Cherry Health's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?