Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Clarinda Regional Health Center

Clarinda Regional Health Center Vendor Cyber Rating & Cyber Score

clarindahealth.com

CRHC is a not-for-profit, municipal hospital. The hospital is governed by a five member, publicly-elected Board of Trustees. The hospital receives no direct funding from taxes from the City of Clarinda, but rather supports itself through efficient management of resources. Our hospital is a designated by Medicare as a Critical Access Hospital (CAH) which means it receives reimbursement from Medicare based on the cost of delivering services to Medicare beneficiaries.


CRHC A.I CyberSecurity Scoring

CRHC
Company Information
Website:https://clarindahealth.com
Employees number:162
Number of followers:589
NAICS:62
Industry Type:Hospitals and Health Care
Homepage:clarindahealth.com
CRHC Risk Score (AI oriented)
Between 600 and 649
logo
CRHCHospitals and Health Care
Updated:
03/06/2026
649/1000
Poor
Caa
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
CRHC Global Score (TPRM)
xxxx
logo
CRHCHospitals and Health Care
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

CRHC
CRHCPoor
Current Score
649Caa (POOR)
01000
1 incidents
-132 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
652Before Incident
JUNE 2026
649Before Incident
MAY 2026
649Before Incident
APRIL 2026
647Before Incident
MARCH 2026
645Before Incident
FEBRUARY 2026
643Before Incident
JANUARY 2026
641Before Incident
DECEMBER 2025
638Before Incident
NOVEMBER 2025
636Before Incident
OCTOBER 2025
763Before Incident
Ransomware
01 Oct 2025CRHC
Clarinda Regional Health Center and Insight Hospital & Medical Center: Iowa hospital warns 24,000+ people of data breach that leaked SSNs, medical and financial info

LockBit Ransomware Group Claims Responsibility for Iowa Hospital Data Breach Affecting 24,000 Patients

631After Incident
CRITICAL-132
CLAINS1780504049
LockBit Ransomware Group Claims Responsibility for Iowa Hospital Data Breach Affecting 24,000 Patients Clarinda Regional Health Center (CRHC), a 47-bed hospital in southwest Iowa, has notified 24,341 individuals of a data breach exposing sensitive personal and medical information. The compromised data includes names, Social Security numbers, medical records, health insurance details, financial account numbers, taxpayer IDs, dates of birth, and driver’s license numbers. The breach was discovered on December 15, 2025, though unauthorized access may have occurred as early as October 2025. The Russia-based ransomware group LockBit claimed responsibility for the attack on December 11, 2025, though CRHC has not confirmed the group’s involvement, and details of the breach including whether a ransom was paid remain unconfirmed. CRHC is offering affected individuals 12 months of free credit monitoring through TransUnion, with enrollment open for 90 days from the notice date. LockBit, active since 2019, operates a ransomware-as-a-service (RaaS) model, allowing affiliates to deploy its malware in exchange for a share of ransom payments. In 2025, the group claimed 133 attacks, 12 of which were confirmed by targeted organizations, including another healthcare breach at Insight Hospital & Medical Center (Illinois) in August 2025. So far in 2026, LockBit has attributed 156 attacks, with 18 confirmed, including three healthcare incidents: Mt. Spokane Pediatrics (WA), Elmwood Healthcare (RI), and Consorzio Selenia (Italy). The attack on CRHC is part of a broader surge in ransomware targeting U.S. healthcare providers. In 2025, 142 confirmed ransomware attacks on hospitals and clinics exposed 12.3 million patient records. In 2026, at least 16 additional attacks have compromised 66,400 records, with recent incidents involving groups like PEAR, Inc, Qilin, and Lynx. These attacks disrupt critical systems, forcing providers to cancel appointments, divert patients, or revert to manual record-keeping while facing ransom demands or prolonged downtime. Founded in 1939, CRHC serves southwest Iowa through its main hospital and two family health centers in Villisca and Bedford. The full extent of the breach’s impact on operations remains unclear.
INCIDENT DETAILS -
TYPE
Ransomware
MOTIVATION
Financial gain
IMPACT
Data Compromised: Sensitive personal and medical information, including names, Social Security numbers, medical records, health insurance details, financial account numbers, taxpayer IDs, dates of birth, and driver’s license numbersOperational Impact: Disruption of critical systems, potential cancellation of appointments, diversion of patients, or manual record-keepingIdentity Theft Risk: HighPayment Information Risk: High
DATA BREACH
Personal Identifiable Information (PII)Medical recordsHealth insurance detailsFinancial account numbersTaxpayer IDsDates of birthDriver’s license numbersNumber Of Records Exposed: 24,341Sensitivity Of Data: HighPersonally Identifiable Information: Yes
SEPTEMBER 2025
763Before Incident
AUGUST 2025
763Before Incident

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for CRHC ?
?
What was CRHC's A.I Rankiteo Cyber Score in June 2026 ?
?
What was CRHC's A.I Rankiteo Cyber Score in May 2026 ?
?
What was CRHC's A.I Rankiteo Cyber Score in April 2026 ?
?
What was CRHC's A.I Rankiteo Cyber Score in March 2026 ?
?
What was CRHC's A.I Rankiteo Cyber Score in February 2026 ?
?
What was CRHC's A.I Rankiteo Cyber Score in January 2026 ?
?
What was CRHC's A.I Rankiteo Cyber Score in December 2025 ?
?
What was CRHC's A.I Rankiteo Cyber Score in November 2025 ?
?
What was CRHC's A.I Rankiteo Cyber Score in October 2025 ?
?
What was CRHC's A.I Rankiteo Cyber Score in September 2025 ?
?
What was CRHC's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on CRHC's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with CRHC ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view CRHC's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?