ETCH
Company Details
Linkedin ID:
east-tennessee-children's-hospital
Website:
Employees number:
1,164
Number of followers:
9,562
NAICS:
62
Industry Type:
Homepage:
etch.com
IP Addresses:
0
Company ID:
EAS_2834752
Scan Status:
In-progress
East Tennessee Children's Hospital Company CyberSecurity Posture
etch.com
East Tennessee Children’s Hospital’s vision is Leading the Way to Healthy Children. Children’s Hospital is a free-standing, independent, not-for-profit pediatric health care system which serves the East Tennessee region. Children’s Hospital is certified by the state of Tennessee as a Comprehensive Regional Pediatric Center.
East Tennessee Children's Hospital A.I CyberSecurity Scoring
ETCH Risk Score (AI oriented)Between 700 and 749
ETCH
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
ETCH Global Score (TPRM)XXXX
ETCH
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
ETCH Company CyberSecurity News & History
Past Incidents
2
Attack Types
2
East Tennessee Children’s Hospital
Breach
Rankiteo Explanation
Attack threatening the organization's existence
Description: The Maine Office of the Attorney General reported that East Tennessee Children's Hospital experienced an external system breach (hacking) from March 11 to March 14, 2022, with the breach discovered on April 19, 2022. The incident potentially affected 422,531 individuals, including 6 Maine residents, and compromised personal information such as names and Social Security numbers. Written notices were sent to affected individuals on May 19, 2022, and identity theft protection services were offered for 12 months.
East Tennessee Children's Hospital
Cyber Attack
Rankiteo Explanation
Attack that could injure or kill people
Description: East Tennessee Children's Hospital issued a notice about an information technology security issue in March 2022. X-Ray and other services were affected and disrupted by the incident. The hospital along with other security experts investigated the incident and established a call center to help the affected people.
ETCH Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for ETCH
Incidents vs Hospitals and Health Care Industry Average (This Year)
No incidents recorded for East Tennessee Children's Hospital in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for East Tennessee Children's Hospital in 2025.
Incident Types ETCH vs Hospitals and Health Care Industry Avg (This Year)
No incidents recorded for East Tennessee Children's Hospital in 2025.
Incident History — ETCH (X = Date, Y = Severity)
ETCH cyber incidents detection timeline including parent company and subsidiaries
ETCH Company Subsidiaries
East Tennessee Children’s Hospital’s vision is Leading the Way to Healthy Children. Children’s Hospital is a free-standing, independent, not-for-profit pediatric health care system which serves the East Tennessee region. Children’s Hospital is certified by the state of Tennessee as a Comprehensive Regional Pediatric Center.
Loading...
ETCH Similar Companies
Molina Healthcare
Molina Healthcare is a FORTUNE 500 company that is focused exclusively on government-sponsored health care programs for families and individuals who qualify for government sponsored health care. Molina Healthcare contracts with state governments and serves as a health plan providing a wide range o
NHS
The NHS was launched in 1948. It was born out of a long-held ideal that good healthcare should be available to all, regardless of wealth – one of the NHS's core principles. With the exception of some charges, such as prescriptions, optical services and dental services, the NHS in England remains
Memorial Healthcare System
Be at the heart of exceptional care. Team MHS Florida is an award-winning group of friends and colleagues at one of the largest not-for-profit health systems in the nation. We're 17,000 strong, advancing towards a brighter future together. We're passionate about the work we do, delivering deep, pe
Addus HomeCare
Addus HomeCare is one of the nation's largest and fastest growing providers of personal home care and support services. Since 1979, Addus has built an exceptional home care company through a commitment to improving the health and wellness of our clients and providing high-quality, cost-effective car
Elevance Health
Fueled by our bold purpose to improve the health of humanity, we are transforming from a traditional health benefits organization into a lifetime trusted health partner. Our nearly 100,000 associates serve more than 118 million people, at every stage of health. We address a full range of needs wi
McKesson
Welcome to the official LinkedIn page for McKesson Corporation. We're an impact-driven healthcare organization dedicated to “Advancing Health Outcomes For All.” As a global healthcare company, we touch virtually every aspect of health. Our leaders empower our people to lead with a growth mindset an
A national blended health organization, Highmark Health and our leading businesses support millions of customers with products, services and solutions closely aligned to our mission of creating remarkable health experiences, freeing people to be their best. Headquartered in Pittsburgh, we're region
BrightSpring Health Services
BrightSpring is the parent company of a family of services and brands that provides clinical, nonclinical, pharmacy and ancillary care services for people of all ages, health and skill levels across home and community settings. The company is a leading provider of diversified home and community-ba
Ardent Health is a leading provider of healthcare in communities across the country. With a focus on consumer-friendly processes and investments in innovative services and technologies, Ardent is passionate about making healthcare better and easier to access. Through its subsidiaries, Ardent owns an
.png)
ETCH CyberSecurity News
October 23, 2025 07:00 AM
From Crisis to Care: Innovative Care Models for Child and Adolescent Psychiatry
Child and adolescent behavioral health services are facing unprecedented demand, fueled by rising rates of anxiety, depression and...
February 12, 2025 08:00 AM
Top 10 Tech Companies to Work for in Knoxville in 2025
Knoxville's tech scene in 2025 is thriving with top companies like Accenture, IdleAir, and GRIDSMART leading innovation in AI, healthcare, and connectivity.
December 23, 2024 08:00 AM
Dan Howell: Transportation Improvements And Quality Education A Priority In 2025
Countless Tennesseans will make resolutions on how they plan to improve their lives in the new year. It might seem like a small thing,...
February 19, 2024 11:28 AM
East Tennessee Children’s Hospital (ETCH) data breach $1.55M class action settlement
East Tennessee Children's Hospital (ETCH) agreed to a $1.55 million class action lawsuit settlement to resolve claims related to a data breach.
February 06, 2024 09:10 AM
Medical Healthcare Solutions data breach class action settlement
Medical Healthcare Solutions agreed to a class action lawsuit settlement to resolve claims that it failed to prevent a 2021 data breach that compromised...
February 06, 2024 08:00 AM
Cyberattack on a Chicago children’s hospital has shut down its systems for a week
A children's hospital in Chicago is still trying to restore its computer systems nearly a week after a cybersecurity incident prompted it to...
October 16, 2023 09:16 AM
Marietta Health data breach $1.75M class action settlement
Marietta Health agreed to pay $1.75 million to resolve claims that it failed to protect patients from a 2021 data breach.
October 30, 2022 07:00 AM
RSV v. COVID v. flu: Here’s what you need to know
(NEXSTAR) — Hospitals throughout the country have been reporting an uptick in children being hospitalized for respiratory syncytial virus,...
September 21, 2022 07:00 AM
Lawsuit over East Tennessee Children’s Hospital data breach dropped
A lawsuit filed against East Tennessee Children's Hospital has been dropped. The suit was originally filed on June 1 following a...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
ETCH CyberSecurity History Information
Official Website of East Tennessee Children's Hospital
The official website of East Tennessee Children's Hospital is https://www.etch.com/.
East Tennessee Children's Hospital’s AI-Generated Cybersecurity Score
According to Rankiteo, East Tennessee Children's Hospital’s AI-generated cybersecurity score is 721, reflecting their Moderate security posture.
How many security badges does East Tennessee Children's Hospital’ have ?
According to Rankiteo, East Tennessee Children's Hospital currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does East Tennessee Children's Hospital have SOC 2 Type 1 certification ?
According to Rankiteo, East Tennessee Children's Hospital is not certified under SOC 2 Type 1.
Does East Tennessee Children's Hospital have SOC 2 Type 2 certification ?
According to Rankiteo, East Tennessee Children's Hospital does not hold a SOC 2 Type 2 certification.
Does East Tennessee Children's Hospital comply with GDPR ?
According to Rankiteo, East Tennessee Children's Hospital is not listed as GDPR compliant.
Does East Tennessee Children's Hospital have PCI DSS certification ?
According to Rankiteo, East Tennessee Children's Hospital does not currently maintain PCI DSS compliance.
Does East Tennessee Children's Hospital comply with HIPAA ?
According to Rankiteo, East Tennessee Children's Hospital is not compliant with HIPAA regulations.
Does East Tennessee Children's Hospital have ISO 27001 certification ?
According to Rankiteo,East Tennessee Children's Hospital is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of East Tennessee Children's Hospital
East Tennessee Children's Hospital operates primarily in the Hospitals and Health Care industry.
Number of Employees at East Tennessee Children's Hospital
East Tennessee Children's Hospital employs approximately 1,164 people worldwide.
Subsidiaries Owned by East Tennessee Children's Hospital
East Tennessee Children's Hospital presently has no subsidiaries across any sectors.
East Tennessee Children's Hospital’s LinkedIn Followers
East Tennessee Children's Hospital’s official LinkedIn profile has approximately 9,562 followers.
NAICS Classification of East Tennessee Children's Hospital
East Tennessee Children's Hospital is classified under the NAICS code 62, which corresponds to Health Care and Social Assistance.
East Tennessee Children's Hospital’s Presence on Crunchbase
No, East Tennessee Children's Hospital does not have a profile on Crunchbase.
East Tennessee Children's Hospital’s Presence on LinkedIn
Yes, East Tennessee Children's Hospital maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/east-tennessee-children's-hospital.
Cybersecurity Incidents Involving East Tennessee Children's Hospital
As of November 29, 2025, Rankiteo reports that East Tennessee Children's Hospital has experienced 2 cybersecurity incidents.
Number of Peer and Competitor Companies
East Tennessee Children's Hospital has an estimated 30,068 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at East Tennessee Children's Hospital ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach and Cyber Attack.
How does East Tennessee Children's Hospital detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with security experts, and communication strategy with established a call center, and communication strategy with written notices sent to affected individuals..
Incident Details
Can you provide details on each incident ?
Title: East Tennessee Children's Hospital Cyber Incident
Description: East Tennessee Children's Hospital issued a notice about an information technology security issue in March 2022. X-Ray and other services were affected and disrupted by the incident. The hospital along with other security experts investigated the incident and established a call center to help the affected people.
Date Detected: March 2022
Type: Information Technology Security Issue
Title: East Tennessee Children's Hospital Data Breach
Description: The Maine Office of the Attorney General reported that East Tennessee Children's Hospital experienced an external system breach (hacking) from March 11 to March 14, 2022, with the breach discovered on April 19, 2022. The incident potentially affected 422,531 individuals, including 6 Maine residents, and compromised personal information such as names and Social Security numbers. Written notices were sent to affected individuals on May 19, 2022, and identity theft protection services were offered for 12 months.
Date Detected: 2022-04-19
Date Publicly Disclosed: 2022-05-19
Type: Data Breach
Attack Vector: Hacking
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Information Technology Security Issue EAS223729422
Systems Affected: X-Ray servicesother services
Operational Impact: Disruption of services
Incident : Data Breach EAS748072525
Data Compromised: Names, Social security numbers
Identity Theft Risk: High
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Social Security Numbers and .
Which entities were affected by each incident ?
Incident : Information Technology Security Issue EAS223729422
Entity Name: East Tennessee Children's Hospital
Entity Type: Hospital
Industry: Healthcare
Location: East Tennessee
Incident : Data Breach EAS748072525
Entity Name: East Tennessee Children's Hospital
Entity Type: Healthcare
Industry: Healthcare
Location: Tennessee
Customers Affected: 422531
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Information Technology Security Issue EAS223729422
Third Party Assistance: Security experts
Communication Strategy: Established a call center
Incident : Data Breach EAS748072525
Communication Strategy: Written notices sent to affected individuals
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through Security experts.
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach EAS748072525
Type of Data Compromised: Names, Social security numbers
Number of Records Exposed: 422531
Sensitivity of Data: High
References
Where can I find more information about each incident ?
Incident : Data Breach EAS748072525
Source: Maine Office of the Attorney General
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Office of the Attorney General.
Investigation Status
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Established a call center and Written notices sent to affected individuals.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : Data Breach EAS748072525
Customer Advisories: Identity theft protection services offered for 12 months
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: was Identity theft protection services offered for 12 months.
Post-Incident Analysis
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Security experts.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on March 2022.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2022-05-19.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Names, Social Security numbers and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was X-Ray servicesother services.
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was Security experts.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Names and Social Security numbers.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 953.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Maine Office of the Attorney General.
Stakeholder and Customer Advisories
What was the most recent customer advisory issued ?
Most Recent Customer Advisory: The most recent customer advisory issued was an Identity theft protection services offered for 12 months.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Exposure of credentials in unintended requests in Devolutions Server, Remote Desktop Manager on Windows.This issue affects Devolutions Server: through 2025.3.8.0; Remote Desktop Manager: through 2025.3.23.0.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Description
Out-of-bounds memory operations in org.lz4:lz4-java 1.8.0 and earlier allow remote attackers to cause denial of service and read adjacent memory via untrusted compressed input.
Risk Information
cvss4
Base: 8.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Reveals plaintext credentials in the MONITOR command vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 1.0.0 through 2.13.0. Users are recommended to upgrade to version 2.14.0, which fixes the issue.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Description
Improper Privilege Management vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from v2.9.0 through v2.13.0. Users are recommended to upgrade to version 2.14.0, which fixes the issue.
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Description
File upload vulnerability in HCL Technologies Ltd. Unica 12.0.0.
Risk Information
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=east-tennessee-children's-hospital' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
