Comparison Overview

Crozer Health

VS

Cardinal Health

Crozer Health

100 W Sproul Rd, Springfield, 19064, US
Last Update: 2025-12-01
View Profile
Between 650 and 699
https://www.crozerhealth.org/

Crozer Health, based in Springfield, PA, is the largest health care provider in Delaware County, a suburb of Philadelphia. Crozer Health provides a full spectrum of wellness, prevention, acute care, rehabilitation, and restorative care to the community. The system is made up of four hospitals, several outpatient facilities, and a comprehensive physician network of primary-care and specialty practices. For more information, visit www.crozerhealth.org or call 1-800-254-3258. Crozer Health is passionate about hiring Nurses and frontline Healthcare staff. We offer a Sign-on Bonus for RNs and qualified candidates will have a minimum of one year of experience. • Critical Care/ED Nurse Resident - $21,000 • Emergency Dept RNs - $20,000 • Tele/Med Surg Nurse Resident - $15,000 • Critical Care (ICU) RNs - $15,000 • Burn Unit RNs - $15,000 • Neuro RNs - $15,000 • Nursing Directors - $15,000 • Asst Clinical Nursing Directors - $15,000 • Night Shift Managers (Nursing) - $15,000 • Nursing Supervisors - $15,000 • Tele/Med Surg RN - $5,000 • Operating Room RN - $5,000 • Surgical Tech - $5,000 • Respiratory Therapist - $7,500 • Med Lab Techs - $10,000 • Clinical Educators - $10,000

NAICS: 62
NAICS Definition: Health Care and Social Assistance
Employees: 385
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
2
View Profile

Cardinal Health

7000 Cardinal Place, Dublin, OH, US, 43017
Last Update: 2025-12-01
Between 800 and 849
http://cardinalhealth.com

Cardinal Health is a distributor of pharmaceuticals, a global manufacturer and distributor of medical and laboratory products, and a provider of performance and data solutions for healthcare facilities. With more than 50 years in business, operations in more than 30 countries and approximately 48,000 employees globally, we are moving healthcare forward. Disclaimer: LinkedIn is a third-party site unaffiliated with Cardinal Health. Cardinal Health is not responsible for the privacy or security policies or practices on LinkedIn or on any of the third-party websites that we may link to through LinkedIn. You should carefully review the privacy and security practices of LinkedIn and linked third-party websites. We do not necessarily endorse any information found here nor are we responsible for the accuracy of any information, opinions, claims, or advice found here or shared here by our followers. By posting content, ideas, or pictures, you grant Cardinal Health a non-exclusive, royalty-free, perpetual, and worldwide license to use your content and any images posted by you, including the rights to copy, distribute, transmit, display, reproduce, edit, translate, and reformat, and incorporate into a collective work. Cardinal Health reserves all rights relating to the company's LinkedIn account, including removing postings and prohibiting individuals from participating on the page.

NAICS: 62
NAICS Definition: Health Care and Social Assistance
Employees: 33,454
Subsidiaries: 2
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/crozer-health.jpeg
Crozer Health
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/cardinal-health.jpeg
Cardinal Health
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Crozer Health
100%
Compliance Rate
0/4 Standards Verified
Cardinal Health
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Hospitals and Health Care Industry Average (This Year)

No incidents recorded for Crozer Health in 2025.

Incidents vs Hospitals and Health Care Industry Average (This Year)

No incidents recorded for Cardinal Health in 2025.

Incident History — Crozer Health (X = Date, Y = Severity)

Crozer Health cyber incidents detection timeline including parent company and subsidiaries

Incident History — Cardinal Health (X = Date, Y = Severity)

Cardinal Health cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/crozer-health.jpeg
Crozer Health
Incidents

Date Detected: 08/2023
Type:Ransomware
Blog: Blog

Date Detected: 6/2020
Type:Malware
Motivation: Financial
Blog: Blog
https://images.rankiteo.com/companyimages/cardinal-health.jpeg
Cardinal Health
Incidents

No Incident

FAQ

Cardinal Health company demonstrates a stronger AI Cybersecurity Score compared to Crozer Health company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Crozer Health company has historically faced a number of disclosed cyber incidents, whereas Cardinal Health company has not reported any.

In the current year, Cardinal Health company and Crozer Health company have not reported any cyber incidents.

Crozer Health company has confirmed experiencing a ransomware attack, while Cardinal Health company has not reported such incidents publicly.

Neither Cardinal Health company nor Crozer Health company has reported experiencing a data breach publicly.

Neither Cardinal Health company nor Crozer Health company has reported experiencing targeted cyberattacks publicly.

Neither Crozer Health company nor Cardinal Health company has reported experiencing or disclosing vulnerabilities publicly.

Neither Crozer Health nor Cardinal Health holds any compliance certifications.

Neither company holds any compliance certifications.

Cardinal Health company has more subsidiaries worldwide compared to Crozer Health company.

Cardinal Health company employs more people globally than Crozer Health company, reflecting its scale as a Hospitals and Health Care.

Neither Crozer Health nor Cardinal Health holds SOC 2 Type 1 certification.

Neither Crozer Health nor Cardinal Health holds SOC 2 Type 2 certification.

Neither Crozer Health nor Cardinal Health holds ISO 27001 certification.

Neither Crozer Health nor Cardinal Health holds PCI DSS certification.

Neither Crozer Health nor Cardinal Health holds HIPAA certification.

Neither Crozer Health nor Cardinal Health holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A weakness has been identified in codingWithElias School Management System up to f1ac334bfd89ae9067cc14dea12ec6ff3f078c01. Affected is an unknown function of the file /student-view.php of the component Edit Student Info Page. This manipulation of the argument First Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be exploited. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided. Other parameters might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-11-30
Updated
Date
2025-11-30
Risk Information
cvss2
Base: 3.3
Severity: LOW
AV:N/AC:L/Au:M/C:N/I:P/A:N
cvss3
Base: 2.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

By providing a command-line argument starting with a semi-colon ; to an API endpoint created by the EnhancedCommandExecutor class of the HexStrike AI MCP server, the resultant composed command is executed directly in the context of the MCP server’s normal privilege; typically, this is root. There is no attempt to sanitize these arguments in the default configuration of this MCP server at the affected version (as of commit 2f3a5512 in September of 2025).

Published
Date
2025-11-30
Updated
Date
2025-11-30
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
References
Description

A weakness has been identified in winston-dsouza Ecommerce-Website up to 87734c043269baac0b4cfe9664784462138b1b2e. Affected by this issue is some unknown functionality of the file /includes/header_menu.php of the component GET Parameter Handler. Executing manipulation of the argument Error can lead to cross site scripting. The attack can be executed remotely. The exploit has been made available to the public and could be exploited. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-11-30
Updated
Date
2025-11-30
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Qualitor 8.20/8.24. Affected by this vulnerability is the function eval of the file /html/st/stdeslocamento/request/getResumo.php. Performing manipulation of the argument passageiros results in code injection. Remote exploitation of the attack is possible. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-11-30
Updated
Date
2025-11-30
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in Scada-LTS up to 2.7.8.1. Affected is the function Common.getHomeDir of the file br/org/scadabr/vo/exporter/ZIPProjectManager.java of the component Project Import. Such manipulation leads to path traversal. The attack may be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-11-30
Updated
Date
2025-11-30
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References