CHU Sainte-Justine A.I CyberSecurity Scoring
03/04/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for CHU Sainte-Justine in 2026.
No incidents recorded for CHU Sainte-Justine in 2026.
No incidents recorded for CHU Sainte-Justine in 2026.
Hospitals and Health Care
BrightSpring is the parent company of a family of services and brands that provides clinical, nonclinical, pharmacy and ancillary care services for people of all ages, health and skill levels across home and community settings. The company is a leading provider of diversified home and community-based health and pharmacy services to medically complex and high-need populations. Its primary businesses include: behavioral health (including autism services), home health care (including personal care, home health, and hospice), neuro therapy, and job placement and vocational training, supported by pharmacy and telecare ancillary technologies and services. These businesses employ over 37,000 dedicated full-time equivalent team members in 50 states and provide services for over 350,000 people every day. BrightSpring is focused on providing quality outcomes and solutions through best-in-class services and investments in people, process and technology innovation, including the development of its Connected Home model of care. Founded and headquartered in Louisville, Kentucky, the company has been making a difference in communities since 1974 – helping people live their best life.
Fueled by our bold purpose to improve the health of humanity, we are transforming from a traditional health benefits organization into a lifetime trusted health partner. Our nearly 100,000 associates serve more than 118 million people, at every stage of health. We address a full range of needs with an integrated whole health approach, powered by industry-leading capabilities and a digital platform for health. We believe that improving health for everyone is possible. It begins by redefining health, reimagining the health system, and strengthening our communities.
Leading Private Healthcare Provider in the Middle East With a vision to be the most trusted healthcare provider in medical excellence and patient experience globally, Dr. Sulaiman Al-Habib Medical Group (HMG) has become the largest provider of comprehensive healthcare services in the Middle East. As it is currently operating 20 Medical Facilities across Saudi Arabia, UAE, and Bahrain; in addition to developing the first private medical city in Saudi Arabia. Dr. Sulaiman AL-Habib Medical Group mission is to develop and operate state of the art medical facilities and provide innovative healthcare services to create value for people starting from the early stages of planning and designing until the final implementation, operation, obtaining the required accreditations. HMG has received 38 international and national awards and accreditations which include JCI, ISO, MEED, Forbes, CPQ, Arab Health Awards, The Middle East HR Excellence Award, and Middle East Insights’ Quality Service Awards.
Rochester Regional Health, headquartered in Rochester, NY, is an integrated health services organization serving the people of Western New York, the Finger Lakes, St. Lawrence County, and beyond. We are dedicated to helping our community stay healthy and live fulfilling lives. Together, we find the best way forward to where you want to be. From western to northern New York, rest assured; we’ve got you covered. We see you. We’re with you. We’re here to uplift you—to treat people, not symptoms. To treat you well. Our experience is nation-leading, neighbor-driven, and rooted in generations of real-life care. Today, we offer comprehensive care from 500+ locations, including 8 hospitals; more than 300 primary and specialty practices, rehabilitation centers and ambulatory campuses; innovative senior services, facilities and independent housing; a wide range of behavioral health services; and ACM Global Laboratories, a global leader in patient and clinical trials. Whatever you need, from every age, to every stage, across every service line, and every symptom... Whatever it is, we’re here for it. Learn more about Rochester Regional Health at careers.rochesterregional.org. Rochester Regional Health is an Equal Opportunity/Affirmative Action Employer. Minority/Female/Disability/Veteran
We are a strong, passionate team of more than 12,500 who take pride in caring for every person who comes through our doors. We lift each other up so we can provide the very best and safest care to those who need us most. Together. Every day. With the support of our university, we make up an academic medical center committed to excellence in patient care, innovation and training tomorrow’s health care workforce. We continue to educate, research and evolve – staying on the cutting edge of care. As a community of innovators, every team member can contribute a spark of ingenuity igniting a force to discover the next cure, hold the next hand, solve the greatest challenges and create the health care of tomorrow. We foster an atmosphere of respect and welcoming for all communities. We infuse our teams with diverse talent that inspires everyone to contribute openly and freely, maximizing their impact and creating meaningful change for our patients and community. Join our team and help us create a new kind of patient experience. Join VCU Health. EEO Statement: VCU Health System strictly prohibits and does not tolerate discrimination against, or harassment of, team members, applicants, or any other covered persons because of age, race, ethnicity, religion, culture, language, physical or mental disability, socioeconomic status, sex (sexual orientation, gender identity or expression and pregnancy), protected veteran status, marital status, genetic information, or any other protected characteristics under applicable federal, state, or local law. Pay Transparency Provisions: VCU Health System complies with the Pay Transparency Provisions.
For more than 100 years, Children’s Healthcare of Atlanta has depended on clinical and nonclinical employees to help make kids better today and healthier tomorrow. Consistently ranked as one of the leading pediatric healthcare systems in the country by U.S. News & World Report, Children’s is the only freestanding pediatric healthcare system in Georgia and one of the largest pediatric clinical care providers in the country. We’re also one of Atlanta’s leading employers and have been recognized as one of the nation’s top places to work. Our System includes: • 789 licensed beds • Three hospitals • Urgent Care Centers • Marcus Autism Center • Center for Advanced Pediatrics • Support Center for nonclinical staff • More than 14,000 employees, including more than 4,400 nurses and 2,300 physicians representing more than 60 pediatric specialties and programs Why Children’s? Here are some of the reasons new graduates and experienced clinicians alike choose Children’s. • We manage more than 1.1 million patient visits and 44,400 surgical procedures annually. • We are home to the only Level 1 and one of the only Level 2 pediatric trauma centers in Georgia. • We take a team approach to care. Our clinicians collaborate with social workers, chaplains, music therapists, therapy dogs and many others to help ensure kids receive comprehensive care.
As the only Idaho-based, not-for-profit health system, St. Luke’s Health System is dedicated to our mission “To improve the health of people in the communities we serve.” Today that means not only treating you when you’re sick or hurt, but doing everything we can to help you be as healthy as possible. Working together, we share resources, skills, and knowledge to provide the best possible care, no matter which of our hospitals you choose. Each St. Luke’s Health System hospital is nationally recognized for excellence in patient care, with prestigious awards and designations reflecting the exceptional care that is synonymous with the St. Luke's name.
Sanford Health is the largest rural health system in the U.S. Our organization is dedicated to transforming the health care experience and providing access to world-class health care in America’s heartland. Headquartered in Sioux Falls, South Dakota, we serve more than one million patients and 220,000 health plan members across 250,000 square miles. Our integrated health system has 47 medical centers, 2,800 physicians and advanced practice providers, 170 clinical investigators and research scientists, more than 200 Good Samaritan Society senior care locations, and world clinics in eight countries around the globe. Learn more about our commitment to shaping the future of rural health care at sanfordhealth.org or Sanford Health News.
Encompass Health is the largest owner and operator of rehabilitation hospitals in the United States. With a national footprint that includes more than 170 hospitals in 39 states and Puerto Rico, the Company provides high-quality, compassionate rehabilitative care for patients recovering from a major injury or illness, using advanced technology and innovative treatments to maximize recovery. Encompass Health is ranked as one of Fortune’s 100 Best Companies to Work For and Modern Healthcare’s Best Places to Work in Healthcare.
Latest updates, reports, and threat intel affecting the global network.
The 20th Winter Triathlon was a record-breaking edition for the CHU Sainte-Justine Foundation, with over $1 million raised in donations.
Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STATIC_FS, available when CONFIG_FILE_SYSTEM is enabled) that serves files from a configured root directory. Before this fix, both the HTTP/1 and HTTP/2 front-ends placed the raw, attacker-controlled request path into client-url_buffer (assembled in on_url() for HTTP/1 and copied verbatim from the :path pseudo-header for HTTP/2) without resolving ./.. segments. The static-FS handler then built the on-disk filename by directly concatenating the configured root with that raw URL (snprintk(fname, ..., "%s%s", static_fs_detail-fs_path, client-url_buffer) at http_server_http1.c:603 and http_server_http2.c:490) and opened it with fs_open(fname, FS_O_READ). Because the handler is reached via wildcard/leading-dir (fnmatch FNM_LEADING_DIR) or fallback resource matching, a request such as GET /<prefix/../../<file is dispatched to the handler and, after the underlying filesystem (e.g. LittleFS/FAT) resolves the .. segments, escapes the configured web root, letting an unauthenticated remote client read arbitrary readable files on the mounted volume (information disclosure). The HTTP server requires no TLS or authentication to reach this path. The fix adds http_server_remove_dot_segments(), which canonicalizes the path portion of the URL before resource lookup in both protocol handlers, neutralizing the traversal. Affects releases v4.0.0 through v4.4.0 for deployments that register a static-filesystem resource.
The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_input) used an incorrect boolean expression that combined the RFC 4861 validity checks with the ICMPv6 code check using the wrong operator precedence: the form was '((length/hop/source/target checks) && (icmp_hdr-code != 0))'. Because every legitimate ND message carries ICMPv6 code 0, an attacker setting code == 0 (the normal value) caused the entire predicate to evaluate false, so the packet was never dropped and all of the other checks were silently skipped. The bypassed checks include the mandatory Hop Limit == 255 verification (which proves an ND packet originated on-link and was not forwarded) and, for Router Advertisements, the requirement that the source be a link-local address, as well as multicast-target sanity checks. As a result, an adjacent on-link attacker — and, because the Hop-Limit-255 guard is bypassed, potentially a remote/off-link attacker whose packets would otherwise be rejected — can have forged Router Advertisement, Neighbor Solicitation, and Neighbor Advertisement messages accepted. A forged RA lets the attacker reconfigure the victim's default router, on-link prefixes (SLAAC), MTU, reachable/retransmit timers, and (with CONFIG_NET_IPV6_RA_RDNSS) DNS servers, while forged NS/NA enable neighbor-cache poisoning, enabling man-in-the-middle, traffic redirection, and denial of service. The flaw is an input-validation/authentication weakness rather than a memory-safety issue: the underlying packet-parsing primitives (net_pkt_get_data, net_pkt_read, net_pkt_skip) are independently bounds-safe and the validated 'length' is the true buffer length, so skipping the length check causes no out-of-bounds access. The defect has existed since the logic was introduced in 2018 and shipped in all releases through v4.4.0; it is fixed by splitting the condition so any failing check drops the packet.
A heap buffer overflow in the HighPriorityASDUQueue_hasUnconfirmedIMessages function of lib60870 v2.3.3 to v2.3.6 allows attackers to cause a Denial of Service (DoS) via a crafted payload.
A heap buffer overflow in the TS7Worker::PerformFunctionWrite() function (/core/s7_server.cpp) of snap7 v1.4.3 allows attackers to cause a Denial of Service (DoS) via a crafted packet.
mcumgr_serial_process_frag() in subsys/mgmt/mcumgr/transport/src/serial_util.c calls net_buf_reset() on the result of smp_packet_alloc() before checking it for NULL. smp_packet_alloc() uses net_buf_alloc(K_NO_WAIT) against the shared MCUmgr packet pool (CONFIG_MCUMGR_TRANSPORT_NETBUF_COUNT, default 4), which returns NULL when the pool is exhausted. In default builds the __ASSERT_NO_MSG in net_buf_reset is a no-op, so net_buf_simple_reset writes through the NULL pointer (buf->len = 0; buf->data = buf->__buf), causing a fault/crash. The fragment data reaches this code from attacker-controlled bytes on the MCUmgr serial/UART/shell-console transports (smp_uart.c, smp_raw_uart.c, smp_shell.c), and a fresh buffer is allocated at the start of essentially every new packet. An attacker on the serial/console link can flood the transport to drive the 4-entry buffer pool to exhaustion and induce the NULL dereference, crashing the device (denial of service). The defect was introduced after the original MCUmgr rework and shipped in Zephyr v4.4.0. The fix moves the NULL check ahead of net_buf_reset.
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.