Devereux
Company Details
Linkedin ID:
devereux
Website:
Employees number:
3,822
Number of followers:
23,503
NAICS:
62133
Industry Type:
Homepage:
devereux.org
IP Addresses:
0
Company ID:
DEV_3374090
Scan Status:
In-progress
Devereux Company CyberSecurity Posture
devereux.org
Devereux is one of the nation’s largest nonprofit organizations, providing services, insight and leadership in the evolving field of behavioral healthcare. Founded in 1912, Devereux operates a network of clinical, therapeutic, educational and employment programs that positively impact the lives of thousands of children, adults – and their families – every year. We are a trusted partner for families, schools and communities, serving individuals in the areas of: • Autism • Intellectual and developmental disabilities • Specialty mental health • Education • Foster care Our mission: To change lives by unlocking and nurturing human potential for people living with emotional, behavioral and cognitive differences. Our Culture: Our Servant Leadership-based culture empowers employees to share ideas that benefit the individuals and families we serve, our staff, and our partners. Working at Devereux is both challenging and rewarding; our supportive and welcoming environment creates a positive atmosphere for all. To find your dream job, visit: https://jobs.devereux.org Career Development: Devereux ASCEND, our career accelerator program, provides team members with the career guidance, coaching and financial assistance they need to reach their full potential. Details, visit: https://jobs.devereux.org/ascend/
Devereux A.I CyberSecurity Scoring
Devereux Risk Score (AI oriented)Between 600 and 649
Devereux
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Devereux Global Score (TPRM)XXXX
Devereux
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Devereux Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
DATA BREACH ALERT: Edelson Lechtzin LLP is Investigating Claims on Behalf of Devereux Advanced Behavioral Health Customers Whose Data May Have Been Compromised
Ransomware
Rankiteo Explanation
Attack threatening the organization’s existence
Description: NEWTOWN, Pa., Dec. 01, 2025 (GLOBE NEWSWIRE) -- The law firm of Edelson Lechtzin LLP is investigating data privacy claims regarding an incident at Devereux Advanced Behavioral Health. Devereux Advanced Behavioral Health learned of a data breach on or about November 28, 2025. If you would like to discuss this case with a lawyer, please click HERE. About Devereux Advanced Behavioral Health Devereux Advanced Behavioral Health is a nationwide nonprofit that provides services for people of all ages with emotional, behavioral, and developmental challenges. What happened? On or about November 28, 2025, the ransomware group known as The Gentlemen announced that they were behind a breach targeting Devereux Advanced Behavioral Health. They issued a threat stating they would release confidential personal information if the organization did not begin talks with them. The size of the information leak is currently unknown. How can I protect my personal data? If you receive a data breach notification regarding Devereux Advanced Behavioral Health, you should take steps to protect yourself against identity theft and fraud. Such measures include regularly reviewing your account statements and monitoring your credit reports for any suspicious or unauthorized activity. Edelson Lechtzin LLP is investigating a class action lawsuit to seek legal remedies for individuals whose sensitive personal data may have been compromised by the Devereux Advanced Behavioral Health data breach. For more
Devereux Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Devereux
Incidents vs Mental Health Care Industry Average (This Year)
Devereux has 13.64% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
Devereux has 56.25% more incidents than the average of all companies with at least one recorded incident.
Incident Types Devereux vs Mental Health Care Industry Avg (This Year)
Devereux reported 1 incidents this year: 0 cyber attacks, 1 ransomware, 0 vulnerabilities, 0 data breaches, compared to industry peers with at least 1 incident.
Incident History — Devereux (X = Date, Y = Severity)
Devereux cyber incidents detection timeline including parent company and subsidiaries
Devereux Company Subsidiaries
Devereux is one of the nation’s largest nonprofit organizations, providing services, insight and leadership in the evolving field of behavioral healthcare. Founded in 1912, Devereux operates a network of clinical, therapeutic, educational and employment programs that positively impact the lives of thousands of children, adults – and their families – every year. We are a trusted partner for families, schools and communities, serving individuals in the areas of: • Autism • Intellectual and developmental disabilities • Specialty mental health • Education • Foster care Our mission: To change lives by unlocking and nurturing human potential for people living with emotional, behavioral and cognitive differences. Our Culture: Our Servant Leadership-based culture empowers employees to share ideas that benefit the individuals and families we serve, our staff, and our partners. Working at Devereux is both challenging and rewarding; our supportive and welcoming environment creates a positive atmosphere for all. To find your dream job, visit: https://jobs.devereux.org Career Development: Devereux ASCEND, our career accelerator program, provides team members with the career guidance, coaching and financial assistance they need to reach their full potential. Details, visit: https://jobs.devereux.org/ascend/
Loading...
Devereux Similar Companies
Parnassia Groep
Parnassia Groep is er voor uw gezondheid, dat doen wij met ruim 8.000 medewerkers. Zij zijn werkzaam op 560 locaties, die u vindt vooral in onze drie kernregio's Noord-Holland, Haaglanden, Rijnmond (waaronder de Zuid-Hollandse Eilanden). Welk psychisch of psychiatrisch probleem u ook heeft, wij h
.png)
Devereux CyberSecurity News
April 21, 2025 07:00 AM
Sophisticated hackers steal money online
BARRHEAD - Another Barrhead resident has reported being defrauded by phone after a local couple's report earlier this month. Brian Devereaux...
August 01, 2024 07:00 AM
50 Over 50: Investment
Ulu Ventures cofounder Miriam Rivera is finding unicorns by betting on the underdogs; Sharon Bowen is breaking glass ceilings at the New York Stock Exchange.
May 13, 2021 07:00 AM
Interview: Chatting ‘Honeydew’ With Director Devereux Milburn And Star Sawyer Spielberg
Devereux Milburn's Honeydew follows aspiring actor Sam (Sawyer Spielberg) and his girlfriend Rylie (Malin Barr) on a harrowing journey into...
June 18, 2017 07:00 AM
Hacker known as ‘His Royal Gingerness’ jailed for cyber-attacks on Norwich Airport and Norfolk and Norwich University Hospital
A hacker who called himself 'His Royal Gingerness' has been jailed 32 weeks for disruptive cyber-attacks on the websites of an airport and a hospital.
May 25, 2017 07:00 AM
Norwich airport and hospital cyber-attack: Man admits guilt
A man using the pseudonym "His Royal Gingerness" has pleaded guilty to two cyber attacks of a hospital and an airport. Daniel Devereux, 30...
May 24, 2017 07:00 AM
Norwich hospital and airport cyber-attack: Man charged
A man arrested in connection with two cyber-attacks in Norfolk has been charged under the Computer Misuse Act. Daniel Devereux, 30, of no...
September 22, 2015 07:00 AM
Devereux E-Newsletter - September 2015
YOUR NOTE FROM THE PRESIDENT Fall 2015. Pictured: Sr. Margaret Carney, O.S.F., president of St. Bonaventure University,.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Devereux CyberSecurity History Information
Official Website of Devereux
The official website of Devereux is http://www.devereux.org.
Devereux’s AI-Generated Cybersecurity Score
According to Rankiteo, Devereux’s AI-generated cybersecurity score is 649, reflecting their Poor security posture.
How many security badges does Devereux’ have ?
According to Rankiteo, Devereux currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Devereux have SOC 2 Type 1 certification ?
According to Rankiteo, Devereux is not certified under SOC 2 Type 1.
Does Devereux have SOC 2 Type 2 certification ?
According to Rankiteo, Devereux does not hold a SOC 2 Type 2 certification.
Does Devereux comply with GDPR ?
According to Rankiteo, Devereux is not listed as GDPR compliant.
Does Devereux have PCI DSS certification ?
According to Rankiteo, Devereux does not currently maintain PCI DSS compliance.
Does Devereux comply with HIPAA ?
According to Rankiteo, Devereux is not compliant with HIPAA regulations.
Does Devereux have ISO 27001 certification ?
According to Rankiteo,Devereux is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Devereux
Devereux operates primarily in the Mental Health Care industry.
Number of Employees at Devereux
Devereux employs approximately 3,822 people worldwide.
Subsidiaries Owned by Devereux
Devereux presently has no subsidiaries across any sectors.
Devereux’s LinkedIn Followers
Devereux’s official LinkedIn profile has approximately 23,503 followers.
NAICS Classification of Devereux
Devereux is classified under the NAICS code 62133, which corresponds to Offices of Mental Health Practitioners (except Physicians).
Devereux’s Presence on Crunchbase
Yes, Devereux has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/devereux-advanced-behavioral-health.
Devereux’s Presence on LinkedIn
Yes, Devereux maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/devereux.
Cybersecurity Incidents Involving Devereux
As of December 02, 2025, Rankiteo reports that Devereux has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Devereux has an estimated 5,060 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Devereux ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
A weakness has been identified in codingWithElias School Management System up to f1ac334bfd89ae9067cc14dea12ec6ff3f078c01. Affected is an unknown function of the file /student-view.php of the component Edit Student Info Page. This manipulation of the argument First Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be exploited. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided. Other parameters might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 3.3
Severity: LOW
AV:N/AC:L/Au:M/C:N/I:P/A:N
cvss3
Base: 2.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
By providing a command-line argument starting with a semi-colon ; to an API endpoint created by the EnhancedCommandExecutor class of the HexStrike AI MCP server, the resultant composed command is executed directly in the context of the MCP server’s normal privilege; typically, this is root. There is no attempt to sanitize these arguments in the default configuration of this MCP server at the affected version (as of commit 2f3a5512 in September of 2025).
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Description
A weakness has been identified in winston-dsouza Ecommerce-Website up to 87734c043269baac0b4cfe9664784462138b1b2e. Affected by this issue is some unknown functionality of the file /includes/header_menu.php of the component GET Parameter Handler. Executing manipulation of the argument Error can lead to cross site scripting. The attack can be executed remotely. The exploit has been made available to the public and could be exploited. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A security flaw has been discovered in Qualitor 8.20/8.24. Affected by this vulnerability is the function eval of the file /html/st/stdeslocamento/request/getResumo.php. Performing manipulation of the argument passageiros results in code injection. Remote exploitation of the attack is possible. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was identified in Scada-LTS up to 2.7.8.1. Affected is the function Common.getHomeDir of the file br/org/scadabr/vo/exporter/ZIPProjectManager.java of the component Project Import. Such manipulation leads to path traversal. The attack may be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=devereux' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
