Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download

Comparison Overview

CHI HealthCHI Health
VS
UPMCUPMC
CHI Health

CHI Health

12809 West Dodge Road, Omaha, 68154, US

Last Update: 31/03/2026

View Profile
Between 750 and 799
http://www.CHIhealth.com
761/1000Fair

#Hellohumankindness

NAICS:62
NAICS Definition:Health Care and Social Assistance
Employees:5,293
Subsidiaries:14
12-month incidents
0
Known data breaches
0
Attack type number
1
UPMC

UPMC

US Steel Tower, 600 Grant Street, Pittsburgh, PA, US, 15219

Last Update: 01/04/2026

View Profile
Between 550 and 599
http://www.upmc.com
587/1000Very Poor

UPMC is a world-renowned, nonprofit health care provider and insurer committed to delivering exceptional, people-centered care and community services. Headquartered in Pittsburgh and affiliated with the University of Pittsburgh Schools of the Health Sciences, UPMC is sh...

NAICS:62
NAICS Definition:Health Care and Social Assistance
Employees:40,981
Subsidiaries:8
12-month incidents
1
Known data breaches
1
Attack type number
3

Compliance Ranges Comparison

Based On Specific Ai Models Category
CHI Health

CHI Health

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA
UPMC

UPMC

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA

Benchmark & Cyber Underwriting Signals

Incidents vs Hospitals and Health Care Industry Avg (This Year)

No incidents recorded for CHI Health in 2026.

Incidents

Incidents vs Hospitals and Health Care Industry Avg (This Year)

UPMC has 5.66% fewer incidents than the average of all companies with at least one recorded incident.

Incidents

Incident History - CHI Health (X = Date, Y = Severity)

CHI Health cyber incidents detection timeline including parent company and subsidiaries.

R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Incident History - UPMC (X = Date, Y = Severity)

UPMC cyber incidents detection timeline including parent company and subsidiaries.

R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Notable Incidents

Last Cyber / HR Incidents / Global...
CHI Health

CHI Health

Incidents
🔒 Incident : Cyber Attack
CHI234511122
UPMC

UPMC

Incidents
🔒 Incident : Breach
UPM1773786562
🔒 Incident : Ransomware
UPMNOR1773678972
🔒 Incident : Data Leak
UPM2344101122

FAQ

Between CHI Health company and UPMC company, which one has the best AI Cybersecurity Score ?
Between CHI Health company and UPMC company, which one has experienced more cyber incidents in the past ?
Between CHI Health company and UPMC company, which one has experienced more cyber incidents this year ?
Between CHI Health company and UPMC company, which one has experienced at least one ransomware attack ?
Between CHI Health company and UPMC company, which one has experienced at least one data breach ?
Between CHI Health company and UPMC company, which one has experienced at least one targeted cyberattack ?
Between CHI Health company and UPMC company, which one has experienced at least one vulnerability ?
Between CHI Health company and UPMC company, which one holds the most compliance certifications ?
Between CHI Health company and UPMC company, which one holds the fewest compliance certifications ?
Between CHI Health company and UPMC company, which one has the most subsidiaries ?
Between CHI Health company and UPMC company, which one has the largest number of employees ?
Between CHI Health and UPMC, which company holds both SOC 2 Type 1 certifications ?
Between CHI Health and UPMC, which company holds both SOC 2 Type 2 certifications ?
Which company is ISO 27001 certified - CHI Health or UPMC ?
Which company is PCI DSS compliant - CHI Health or UPMC ?
Between CHI Health and UPMC, which company complies with HIPAA regulations for healthcare data ?
Between CHI Health and UPMC, which company complies with GDPR requirements ?

Latest Global CVEs

CVE-2026-58523
SUMMARY

Improper access control in Microsoft Edge for Android allows an unauthorized attacker to bypass a security feature over a network.

PUBLISHED
Date2026-07-03
UPDATED
Date2026-07-03
RISK INFORMATION (Score: 6.5)
CVSS3
Base Score: 6.5
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
IMPACT SCORE
3.6
EXPLOITABILITY
2.8
CVE-2026-14617
SUMMARY

A security vulnerability has been detected in NousResearch hermes-agent up to 2026.4.30. Affected is the function GatewayStreamConsumer._filter_and_accumulate of the file gateway/stream_consumer.py of the component Streaming Reasoning Tag Filter. The manipulation leads to improper handling of case sensitivity. The attack may be initiated remotely. The attack's complexity is rated as high. The exploitability is told to be difficult. The exploit has been disclosed publicly and may be used. The project decided to not implement a dedicated fix: "[T]he analysis and the fix are both sound. It just lands below the bar for the maintenance cost of a duplicated scrub path."

PUBLISHED
Date2026-07-03
UPDATED
Date2026-07-03
RISK INFORMATION (Score: 3.1)
CVSS2
Base Score: 2.1
Complexity: HIGH
AV:N/AC:H/Au:S/C:P/I:N/A:N
CVSS3
Base Score: 3.1
Complexity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
CVSS4
Base Score: 1.3
Complexity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
IMPACT SCORE
1.4
EXPLOITABILITY
1.6
CVE-2026-58597
SUMMARY

Insufficient ui warning of dangerous operations in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

PUBLISHED
Date2026-07-03
UPDATED
Date2026-07-03
RISK INFORMATION (Score: 4.3)
CVSS3
Base Score: 4.3
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
IMPACT SCORE
1.4
EXPLOITABILITY
2.8
CVE-2026-58524
SUMMARY

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.

PUBLISHED
Date2026-07-03
UPDATED
Date2026-07-03
RISK INFORMATION (Score: 5.4)
CVSS3
Base Score: 5.4
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
IMPACT SCORE
2.5
EXPLOITABILITY
2.8
CVE-2026-58522
SUMMARY

Relative path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally.

PUBLISHED
Date2026-07-03
UPDATED
Date2026-07-03
RISK INFORMATION (Score: 6.8)
CVSS3
Base Score: 6.8
Complexity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
IMPACT SCORE
4.2
EXPLOITABILITY
2.5