Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download

Comparison Overview

Covenant HealthCovenant Health
VS
UPMCUPMC
Covenant Health

Covenant Health

100 Fort Sanders West Blvd, Knoxville, TN, US, 37922

Last Update: 03/04/2026

View Profile
682/1000Weak

Covenant Health is a not-for-profit, locally owned integrated healthcare enterprise with a mission to improve the quality of life in our communities through better health. Covenant Health serves a 25-county region of Tennessee and has more than 2 million patient encount...

NAICS:62
NAICS Definition:Health Care and Social Assistance
Employees:4,902
Subsidiaries:0
12-month incidents
1
Known data breaches
1
Attack type number
2
UPMC

UPMC

US Steel Tower, 600 Grant Street, Pittsburgh, PA, US, 15219

Last Update: 01/04/2026

View Profile
Between 550 and 599
http://www.upmc.com
587/1000Very Poor

UPMC is a world-renowned, nonprofit health care provider and insurer committed to delivering exceptional, people-centered care and community services. Headquartered in Pittsburgh and affiliated with the University of Pittsburgh Schools of the Health Sciences, UPMC is sh...

NAICS:62
NAICS Definition:Health Care and Social Assistance
Employees:40,981
Subsidiaries:8
12-month incidents
1
Known data breaches
1
Attack type number
3

Compliance Ranges Comparison

Based On Specific Ai Models Category
Covenant Health

Covenant Health

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA
UPMC

UPMC

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA

Benchmark & Cyber Underwriting Signals

Incidents vs Hospitals and Health Care Industry Avg (This Year)

Covenant Health has 31.03% fewer incidents than the average of same-industry companies with at least one recorded incident.

Incidents

Incidents vs Hospitals and Health Care Industry Avg (This Year)

UPMC has 5.66% fewer incidents than the average of all companies with at least one recorded incident.

Incidents

Incident History - Covenant Health (X = Date, Y = Severity)

Covenant Health cyber incidents detection timeline including parent company and subsidiaries.

R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Incident History - UPMC (X = Date, Y = Severity)

UPMC cyber incidents detection timeline including parent company and subsidiaries.

R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Notable Incidents

Last Cyber / HR Incidents / Global...
Covenant Health

Covenant Health

Incidents
🔒 Incident : Breach
COV1767633656
🔒 Incident : Cyber Attack
COV416053125
UPMC

UPMC

Incidents
🔒 Incident : Breach
UPM1773786562
🔒 Incident : Ransomware
UPMNOR1773678972
🔒 Incident : Data Leak
UPM2344101122

FAQ

Between Covenant Health company and UPMC company, which one has the best AI Cybersecurity Score ?
Between Covenant Health company and UPMC company, which one has experienced more cyber incidents in the past ?
Between Covenant Health company and UPMC company, which one has experienced more cyber incidents this year ?
Between Covenant Health company and UPMC company, which one has experienced at least one ransomware attack ?
Between Covenant Health company and UPMC company, which one has experienced at least one data breach ?
Between Covenant Health company and UPMC company, which one has experienced at least one targeted cyberattack ?
Between Covenant Health company and UPMC company, which one has experienced at least one vulnerability ?
Between Covenant Health company and UPMC company, which one holds the most compliance certifications ?
Between Covenant Health company and UPMC company, which one holds the fewest compliance certifications ?
Between Covenant Health company and UPMC company, which one has the most subsidiaries ?
Between Covenant Health company and UPMC company, which one has the largest number of employees ?
Between Covenant Health and UPMC, which company holds both SOC 2 Type 1 certifications ?
Between Covenant Health and UPMC, which company holds both SOC 2 Type 2 certifications ?
Which company is ISO 27001 certified - Covenant Health or UPMC ?
Which company is PCI DSS compliant - Covenant Health or UPMC ?
Between Covenant Health and UPMC, which company complies with HIPAA regulations for healthcare data ?
Between Covenant Health and UPMC, which company complies with GDPR requirements ?

Latest Global CVEs

CVE-2026-57100
SUMMARY

Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized attacker to elevate privileges over a network.

PUBLISHED
Date2026-07-02
UPDATED
Date2026-07-02
RISK INFORMATION (Score: 9.9)
CVSS3
Base Score: 9.9
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
IMPACT SCORE
6
EXPLOITABILITY
3.1
CVE-2026-54998
SUMMARY

Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network.

PUBLISHED
Date2026-07-02
UPDATED
Date2026-07-02
RISK INFORMATION (Score: 8.8)
CVSS3
Base Score: 8.8
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
IMPACT SCORE
5.9
EXPLOITABILITY
2.8
CVE-2026-45499
SUMMARY

Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a network.

PUBLISHED
Date2026-07-02
UPDATED
Date2026-07-02
RISK INFORMATION (Score: 9.9)
CVSS3
Base Score: 9.9
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
IMPACT SCORE
6
EXPLOITABILITY
3.1
CVE-2026-41106
SUMMARY

Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.

PUBLISHED
Date2026-07-02
UPDATED
Date2026-07-02
RISK INFORMATION (Score: 9.3)
CVSS3
Base Score: 9.3
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
IMPACT SCORE
5.8
EXPLOITABILITY
2.8
CVE-2026-26145
SUMMARY

Improper access control in Azure Synapse allows an authorized attacker to elevate privileges over a network.

PUBLISHED
Date2026-07-02
UPDATED
Date2026-07-02
RISK INFORMATION (Score: 4.8)
CVSS3
Base Score: 4.8
Complexity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N
IMPACT SCORE
3.6
EXPLOITABILITY
1.2