Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Cherry Health

Cherry Health Vendor Cyber Rating & Cyber Score

cherryhealth.org

Cherry Health is an independent, non-profit Federally Qualified Health Center (FQHC) with a primary focus on providing high-quality health services to those who have little or no access to health care, regardless of income or insurance status. Services provided by Cherry Health include primary care, women’s health, pediatrics, dental, vision, behavioral health, substance use treatment, pharmacy, correctional health, five school-based health centers and employee assistance for employers. Cherry Health provides services to all individuals, and a sliding fee payment scale based on income and family size is available to those without insurance. Medicaid and Healthy Michigan are accepted, as are many other insurances. Established in 1988,


Cherry Health A.I CyberSecurity Scoring

Cherry Health
Company Information
Website:https://cherryhealth.org/
Employees number:491
Number of followers:3,511
NAICS:62
Industry Type:Hospitals and Health Care
Homepage:cherryhealth.org
Cherry Health Risk Score (AI oriented)
Between 550 and 599
logo
Cherry HealthHospitals and Health Care
Updated:
22/06/2026
569/1000
Very Poor
Ca
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
Cherry Health Global Score (TPRM)
xxxx
logo
Cherry HealthHospitals and Health Care
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

Cherry Health
Cherry HealthVery Poor
Current Score
569Ca (VERY POOR)
01000
2 incidents
-107 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
571Before Incident
JUNE 2026
569Before Incident
MAY 2026
567Before Incident
APRIL 2026
693Before Incident
Ransomware
19 Apr 2026Cherry Health
Cherry Health: Cherry HealthData Breach

Cherry Health Data Breach Affecting Over 184,000 Individuals

562After Incident
CRITICAL-131
CHE1781929626
Cherry Health Reports Data Breach Affecting Over 184,000 Individuals Michigan-based healthcare provider Cherry Health (operating as Cherry Street Services) has disclosed a data breach involving unauthorized access to its network. The incident, detected on or around April 19, 2026, coincided with a days-long network outage suspected to be the result of a ransomware attack. An investigation, supported by third-party cybersecurity specialists, confirmed that an unauthorized actor accessed and exfiltrated sensitive data from Cherry Health’s systems. The compromised information varies by individual but may include: - Personal details: Names, addresses, phone numbers, dates of birth, and Social Security numbers - Healthcare data: Health insurance IDs, patient ID numbers, provider names, and service dates Cherry Health has stated that over 184,000 individuals were potentially affected, though the full scope of the breach remains under review. The organization plans to notify impacted individuals in writing once its investigation concludes. Legal teams are currently assessing whether a class action lawsuit can be filed on behalf of affected individuals, with attorneys seeking input from those who received breach notifications or believe their data was exposed. The breach is distinct from a separate December 2023 incident that also impacted Cherry Health.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Data Compromised: Personal details (names, addresses, phone numbers, dates of birth, Social Security numbers), Healthcare data (health insurance IDs, patient ID numbers, provider names, service dates)Downtime: days-long network outageLegal Liabilities: Potential class action lawsuitIdentity Theft Risk: High
DATA BREACH
Personal detailsHealthcare dataNumber Of Records Exposed: 184000Sensitivity Of Data: HighNamesAddressesPhone numbersDates of birthSocial Security numbersHealth insurance IDsPatient ID numbers
MARCH 2026
693Before Incident
FEBRUARY 2026
691Before Incident
JANUARY 2026
764Before Incident
DECEMBER 2025
689Before Incident
NOVEMBER 2025
688Before Incident
OCTOBER 2025
686Before Incident
SEPTEMBER 2025
685Before Incident
AUGUST 2025
683Before Incident
JULY 2025
764Before Incident
Breach
17 Jul 2025Cherry Health
Cherry Health and Coastal Carolina Centers of Urology and Surgery: Blue Fish Pediatrics Data Breach Affects More Than 41,000 Texas Patients

Multiple Healthcare Data Breaches Expose Sensitive Patient Information Across U.S.

681After Incident
CRITICAL-83
COACHE1782138294
Multiple Healthcare Data Breaches Expose Sensitive Patient Information Across U.S. A series of cyberattacks targeting healthcare providers in 2025 and 2026 has compromised the personal and medical data of tens of thousands of patients nationwide. Blue Fish Pediatrics (Texas) In July 2025, Houston-based Blue Fish Pediatrics detected unauthorized access to its IT systems between July 11 and July 17. A forensic investigation revealed that threat actors accessed files containing sensitive patient data, including full names, dates of birth, Social Security numbers, driver’s license numbers, medical records, diagnoses, lab results, and treatment details. While the total number of affected individuals remains undisclosed, the Texas Attorney General reported that 41,485 Texas residents were impacted. Affected patients are being notified and offered complimentary credit monitoring if their Social Security numbers were exposed. Cherry Health (Michigan) Michigan’s largest non-profit Federally Qualified Health Center, Cherry Health, announced a breach on June 18, 2026, after detecting suspicious network activity on April 19, 2026. Unauthorized access led to the theft of patient data, including names, addresses, insurance details, and, in some cases, Social Security numbers. The organization has not reported any misuse of the stolen data but is implementing additional security measures. The full scope of the breach is still under review. Coastal Carolina Centers of Urology and Surgery (South Carolina) The Rivertown Surgery Center in Conway, South Carolina, reported a ransomware attack by the Qilin ransomware group, which accessed patient records on August 26, 2025. The breach exposed names and health records of 2,886 individuals, with the group posting stolen data on its dark web leak site on September 4, 2025. Notifications were sent to affected patients in May 2026. Regence (Oregon) Regence Blue Cross Blue Shield of Oregon disclosed a breach affecting 2,856 members after unauthorized actors accessed digital accounts between January 1 and April 15, 2026. The attackers redeemed wellness rewards for gift cards, potentially exposing account information. The incident was reported to federal authorities, though no further details on data exposure have been released. These breaches highlight ongoing vulnerabilities in healthcare cybersecurity, with attackers targeting sensitive patient data across multiple states.
INCIDENT DETAILS -
TYPE
Data BreachRansomware
IMPACT
Data Compromised: Sensitive patient data, including personal and medical informationIdentity Theft Risk: High
DATA BREACH
Full namesDates of birthSocial Security numbersDriver’s license numbersMedical recordsDiagnosesLab resultsTreatment detailsAddressesInsurance detailsHealth records41,485 (Blue Fish Pediatrics)2,886 (Coastal Carolina Centers of Urology and Surgery)2,856 (Regence)Sensitivity Of Data: HighData Exfiltration: Yes (Qilin ransomware group posted stolen data on dark web)Personally Identifiable Information: Yes

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for Cherry Health ?
?
What was Cherry Health's A.I Rankiteo Cyber Score in June 2026 ?
?
What was Cherry Health's A.I Rankiteo Cyber Score in May 2026 ?
?
What was Cherry Health's A.I Rankiteo Cyber Score in April 2026 ?
?
What was Cherry Health's A.I Rankiteo Cyber Score in March 2026 ?
?
What was Cherry Health's A.I Rankiteo Cyber Score in February 2026 ?
?
What was Cherry Health's A.I Rankiteo Cyber Score in January 2026 ?
?
What was Cherry Health's A.I Rankiteo Cyber Score in December 2025 ?
?
What was Cherry Health's A.I Rankiteo Cyber Score in November 2025 ?
?
What was Cherry Health's A.I Rankiteo Cyber Score in October 2025 ?
?
What was Cherry Health's A.I Rankiteo Cyber Score in September 2025 ?
?
What was Cherry Health's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on Cherry Health's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with Cherry Health ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view Cherry Health's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?