Chesapeake Regional Healthcare Company CyberSecurity Posture
chesapeakeregional.com
Chesapeake Regional Healthcare is a health system laser focused on innovation, known for making medical history in the region and providing patients with truly personal care. It’s hospital, Chesapeake Regional Medical Center, is the only independent, community-based hospital in Hampton Roads. With the best heart attack survival rates of the major systems in the region (risk adjusted), a nationally accredited Chest Pain Center, and open-heart surgical care coming in 2024. The system has a state-of-the-art neurointerventional suite, comprehensive cancer care, the most preferred Labor & Delivery program in the area, nearly 40 practice locations and approximately 600 physicians on staff. Chesapeake Regional Healthcare’s technologically advanced health care saves lives every day. Learn more at ChesapeakeRegional.com.
Company Details
chesapeake-regional-medical-center
1,318
9,338
62
chesapeakeregional.com
0
CHE_8306063
In-progress
CRH Risk Score (AI oriented)Between 700 and 749
CRH Global Score (TPRM)XXXX
Description: Chesapeake Regional Healthcare notified 2,100 patients from the hospital’s sleep center program that some of their electronic health information have been compromised. Two portable hard drives were reported missing from the hospital’s sleep center. The data breach includes sleep center patients who received medical services at The Sleep Center at Chesapeake Regional Healthcare between April 2015 and February 2018.
Description: The Children's Hospital of the King's Daughters, Chesapeake Regional Medical Centre, Bayview Physicians, and Pariser Dermatology are among the Virginia hospitals and medical practices affected by the data hack. Sentara and Riverside Health Systems are also involved. The compromised information contained names, addresses, Social Security numbers, and other account information. The CCC began informing its business partners as soon as possible and collaborated with them to tell those whose information was compromised. According to Credit Control Corporation, the theft affects accounts for local hospitals and doctors' offices that handle debt collection. The agency claims that an investigation was quickly launched after becoming aware of strange activities.
No incidents recorded for Chesapeake Regional Healthcare in 2025.
No incidents recorded for Chesapeake Regional Healthcare in 2025.
No incidents recorded for Chesapeake Regional Healthcare in 2025.
CRH cyber incidents detection timeline including parent company and subsidiaries
Chesapeake Regional Healthcare is a health system laser focused on innovation, known for making medical history in the region and providing patients with truly personal care. It’s hospital, Chesapeake Regional Medical Center, is the only independent, community-based hospital in Hampton Roads. With the best heart attack survival rates of the major systems in the region (risk adjusted), a nationally accredited Chest Pain Center, and open-heart surgical care coming in 2024. The system has a state-of-the-art neurointerventional suite, comprehensive cancer care, the most preferred Labor & Delivery program in the area, nearly 40 practice locations and approximately 600 physicians on staff. Chesapeake Regional Healthcare’s technologically advanced health care saves lives every day. Learn more at ChesapeakeRegional.com.
Ochsner Health is the leading nonprofit healthcare provider in the Gulf South, delivering expert care at its 46 hospitals and more than 370 health and urgent care centers. For 13 consecutive years, U.S. News & World Report has recognized Ochsner as the No. 1 hospital in Louisiana. Additionally, Ochs
We are a strong, passionate team of more than 12,500 who take pride in caring for every person who comes through our doors. We lift each other up so we can provide the very best and safest care to those who need us most. Together. Every day. With the support of our university, we make up an acade
The University of Maryland Medical System (UMMS) was created in 1984 when the state-owned University Hospital became a private, nonprofit organization. It has evolved into a multi-hospital system with academic, community and specialty service missions reaching every part of the state and beyond. UM
Com cerca de 80 anos de experiência, a Hapvida é hoje a maior empresa de saúde integrada da América Latina. A companhia, que possui mais de 69 mil colaboradores, atende quase 16 milhões de beneficiários de saúde e odontologia espalhados pelas cinco regiões do Brasil. Todo o aparato foi construído a
Rush University Medical Center is an academic medical center that includes a 671-bed hospital serving adults and children, the 61-bed Johnston R. Bowman Health Center and Rush University. Rush University is home to one of the first medical colleges in the Midwest and one of the nation's top-ranked n
BJC Health System is one of the largest nonprofit health care organizations in the United States and the largest in the state of Missouri, serving urban, suburban, and rural communities across Missouri, southern Illinois, eastern Kansas, and the greater Midwest region. One of the largest employers i
Atrium Health Wake Forest Baptist is a nationally recognized academic medical center and health system based in Winston-Salem, NC, part of Advocate Health, the third-largest nonprofit health system in the United States. Atrium Health Wake Forest Baptist’s two main components are an integrated clin
UMass Memorial Health is the health and wellness partner of the people of Central Massachusetts. Through pain and pandemics, our commitment to our communities never wanes. We use knowledge and innovation to create breakthrough medicine, to create jobs, and to make life better for those we serve. We
About Aveanna It all started with a simple idea: How can we help people live better lives by providing better homecare? That idea became a company called Aveanna, dedicated to bringing new possibilities and new hope to those we serve. At Aveanna, we believe that the ultimate place for caring is rig
.png)
CHESAPEAKE, Va. (WAVY) — A Portsmouth man has been arrested and charged with shooting at his former coworkers on I-464 Thursday morning...
NOTE: This video is from last year's event. CHESAPEAKE, Va. (WAVY) – Eight hundred runners showed up to Chesapeake Regional Health...
A former nurse at Chesapeake Regional Hospital reused IV needles, the hospital said Thursday. The hospital said it has no direct information...
The Trump administration ordered temporary freezes in funding for programs spanning virtually every part of the government.
CHESAPEAKE, Va. (WAVY) — It's Draft Day at Chesapeake Regional Healthcare, and nothing could prepare the group of future nurses as staff...
A Virginia hospital has been indicted on federal charges arising out of what prosecutors say was a "horrifying scheme" to profit from...
Kurtis Hooks (MPH '05, Ph.D. '20) knows what it's like to suffer from chronic illness. Hooks was diagnosed with Crohn's disease at 12.
UVA Health is rescheduling some elective procedures this week.
An effort to raise awareness during breast cancer awareness month manifested itself in a display of decorated bras.
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
The official website of Chesapeake Regional Healthcare is https://chesapeakeregional.com.
According to Rankiteo, Chesapeake Regional Healthcare’s AI-generated cybersecurity score is 724, reflecting their Moderate security posture.
According to Rankiteo, Chesapeake Regional Healthcare currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
According to Rankiteo, Chesapeake Regional Healthcare is not certified under SOC 2 Type 1.
According to Rankiteo, Chesapeake Regional Healthcare does not hold a SOC 2 Type 2 certification.
According to Rankiteo, Chesapeake Regional Healthcare is not listed as GDPR compliant.
According to Rankiteo, Chesapeake Regional Healthcare does not currently maintain PCI DSS compliance.
According to Rankiteo, Chesapeake Regional Healthcare is not compliant with HIPAA regulations.
According to Rankiteo,Chesapeake Regional Healthcare is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Chesapeake Regional Healthcare operates primarily in the Hospitals and Health Care industry.
Chesapeake Regional Healthcare employs approximately 1,318 people worldwide.
Chesapeake Regional Healthcare presently has no subsidiaries across any sectors.
Chesapeake Regional Healthcare’s official LinkedIn profile has approximately 9,338 followers.
Chesapeake Regional Healthcare is classified under the NAICS code 62, which corresponds to Health Care and Social Assistance.
No, Chesapeake Regional Healthcare does not have a profile on Crunchbase.
Yes, Chesapeake Regional Healthcare maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/chesapeake-regional-medical-center.
As of December 17, 2025, Rankiteo reports that Chesapeake Regional Healthcare has experienced 2 cybersecurity incidents.
Chesapeake Regional Healthcare has an estimated 31,333 peer or competitor companies worldwide.
Incident Types: The types of cybersecurity incidents that have occurred include Data Leak.
Detection and Response: The company detects and responds to cybersecurity incidents through an communication strategy with ccc began informing its business partners and collaborated with them to notify those whose information was compromised...
Title: Chesapeake Regional Healthcare Data Breach
Description: Chesapeake Regional Healthcare notified 2,100 patients from the hospital’s sleep center program that some of their electronic health information have been compromised. Two portable hard drives were reported missing from the hospital’s sleep center.
Type: Data Breach
Attack Vector: Physical Theft
Vulnerability Exploited: Physical Security
Title: Data Breach Affecting Virginia Hospitals and Medical Practices
Description: A data breach involving the Credit Control Corporation (CCC) has affected various Virginia hospitals and medical practices. The compromised information includes names, addresses, Social Security numbers, and other account information.
Type: Data Breach
Common Attack Types: The most common types of attacks the company has faced is Data Leak.
Data Compromised: Electronic Health Information
Data Compromised: Names, Addresses, Social security numbers, Other account information
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Electronic Health Information, Names, Addresses, Social Security Numbers, Other Account Information and .
Entity Name: Chesapeake Regional Healthcare
Entity Type: Healthcare Provider
Industry: Healthcare
Customers Affected: 2,100
Entity Name: The Children's Hospital of the King's Daughters
Entity Type: Hospital
Industry: Healthcare
Location: Virginia
Entity Name: Chesapeake Regional Medical Centre
Entity Type: Hospital
Industry: Healthcare
Location: Virginia
Entity Name: Bayview Physicians
Entity Type: Medical Practice
Industry: Healthcare
Location: Virginia
Entity Name: Pariser Dermatology
Entity Type: Medical Practice
Industry: Healthcare
Location: Virginia
Entity Name: Sentara Health Systems
Entity Type: Health System
Industry: Healthcare
Location: Virginia
Entity Name: Riverside Health Systems
Entity Type: Health System
Industry: Healthcare
Location: Virginia
Communication Strategy: CCC began informing its business partners and collaborated with them to notify those whose information was compromised.
Type of Data Compromised: Electronic Health Information
Number of Records Exposed: 2,100
Type of Data Compromised: Names, Addresses, Social security numbers, Other account information
Sensitivity of Data: High
Investigation Status: An investigation was quickly launched after becoming aware of strange activities.
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through CCC began informing its business partners and collaborated with them to notify those whose information was compromised..
Most Significant Data Compromised: The most significant data compromised in an incident were Electronic Health Information, names, addresses, Social Security numbers, other account information and .
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Electronic Health Information, Social Security numbers, names, addresses and other account information.
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 2.1K.
Current Status of Most Recent Investigation: The current status of the most recent investigation is An investigation was quickly launched after becoming aware of strange activities..
.png)
Nagios XI versions prior to 2026R1.1 are vulnerable to local privilege escalation due to an unsafe interaction between sudo permissions and application file permissions. A user‑accessible maintenance script may be executed as root via sudo and includes an application file that is writable by a lower‑privileged user. A local attacker with access to the application account can modify this file to introduce malicious code, which is then executed with elevated privileges when the script is run. Successful exploitation results in arbitrary code execution as the root user.
Out of bounds read and write in V8 in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Use after free in WebGPU in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
SIPGO is a library for writing SIP services in the GO language. Starting in version 0.3.0 and prior to version 1.0.0-alpha-1, a nil pointer dereference vulnerability is in the SIPGO library's `NewResponseFromRequest` function that affects all normal SIP operations. The vulnerability allows remote attackers to crash any SIP application by sending a single malformed SIP request without a To header. The vulnerability occurs when SIP message parsing succeeds for a request missing the To header, but the response creation code assumes the To header exists without proper nil checks. This affects routine operations like call setup, authentication, and message handling - not just error cases. This vulnerability affects all SIP applications using the sipgo library, not just specific configurations or edge cases, as long as they make use of the `NewResponseFromRequest` function. Version 1.0.0-alpha-1 contains a patch for the issue.
GLPI is a free asset and IT management software package. Starting in version 9.1.0 and prior to version 10.0.21, an unauthorized user with an API access can read all knowledge base entries. Users should upgrade to 10.0.21 to receive a patch.
Get company history
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rapid