EPHA
Company Details
Linkedin ID:
european-public-health-alliance
Website:
Employees number:
36
Number of followers:
17,853
NAICS:
921
Industry Type:
Homepage:
epha.org
IP Addresses:
0
Company ID:
EUR_4646219
Scan Status:
In-progress
European Public Health Alliance (EPHA) Company CyberSecurity Posture
epha.org
EPHA is a change agent – Europe’s leading NGO advocating for better health. We are a dynamic member-led organisation, made up of public health NGOs, patient groups, health professionals, and disease groups working together to improve health and strengthen the voice of public health in Europe. Our MISSION is to bring together the public health community to provide thought leadership and facilitate change; to build public health capacity to deliver equitable solutions to European public health challenges, to improve health and reduce health inequalities. Our VISION is of a Europe with universal good health and well-being, where all have access to a sustainable and high quality health system: A Europe whose policies and practices contribute to health, both within and beyond its borders. WHAT ARE OUR VALUES? - Equity - Solidarity - Sustainability - Universality - Diversity - Good governance WHAT DO WE DO? - We monitor the policy making process within the EU institutions and support the flow of information on health promotion and public health policy developments amongst all interested players including: politicians, civil servants, NGOs, stakeholders and the public; - We promote greater awareness amongst European citizens and NGOs about policy developments and programme initiatives that effect the health of those living in the EU, allowing them to contribute to the policy making process; - We train, mentor and support NGOs and health actors to engage with the EU, particularly local organisations, those working with disadvantaged communities and in central and Eastern Europe; - We participate in policy debates and stakeholder dialogues to raise the profile of health in all policy areas, supporting collaboration and partnerships between non-governmental organisations and other organisations active at European, national and local level on health promotion and public health.
European Public Health Alliance (EPHA) A.I CyberSecurity Scoring
EPHA Risk Score (AI oriented)Between 650 and 699
EPHA
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
EPHA Global Score (TPRM)XXXX
EPHA
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
EPHA Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
European healthcare organizations
Ransomware
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: Between June and October 2024, European healthcare entities were targeted by the NailaoLocker ransomware as part of The Green Nailao campaign. The attackers exploited a zero-day flaw, CVE-2024-24919, in Check Point VPN appliances to gain unauthorized access. The ransomware, which exhibited poor design and a lack of sophisticated features, encrypted files and appended a '.locked' extension, demanding a ransom paid in Bitcoin. No indication of data theft was mentioned in the ransom note. The threat actors, potentially linked to Chinese APTs, used ShadowPad and PlugX malware for lateral movement and persistence, with motives ranging from espionage to financial gain. The attack disrupted healthcare services and potentially risked patient data, although the full extent of the damage remains undisclosed.
EPHA Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for EPHA
Incidents vs Public Policy Offices Industry Average (This Year)
No incidents recorded for European Public Health Alliance (EPHA) in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for European Public Health Alliance (EPHA) in 2025.
Incident Types EPHA vs Public Policy Offices Industry Avg (This Year)
No incidents recorded for European Public Health Alliance (EPHA) in 2025.
Incident History — EPHA (X = Date, Y = Severity)
EPHA cyber incidents detection timeline including parent company and subsidiaries
EPHA Company Subsidiaries
EPHA is a change agent – Europe’s leading NGO advocating for better health. We are a dynamic member-led organisation, made up of public health NGOs, patient groups, health professionals, and disease groups working together to improve health and strengthen the voice of public health in Europe. Our MISSION is to bring together the public health community to provide thought leadership and facilitate change; to build public health capacity to deliver equitable solutions to European public health challenges, to improve health and reduce health inequalities. Our VISION is of a Europe with universal good health and well-being, where all have access to a sustainable and high quality health system: A Europe whose policies and practices contribute to health, both within and beyond its borders. WHAT ARE OUR VALUES? - Equity - Solidarity - Sustainability - Universality - Diversity - Good governance WHAT DO WE DO? - We monitor the policy making process within the EU institutions and support the flow of information on health promotion and public health policy developments amongst all interested players including: politicians, civil servants, NGOs, stakeholders and the public; - We promote greater awareness amongst European citizens and NGOs about policy developments and programme initiatives that effect the health of those living in the EU, allowing them to contribute to the policy making process; - We train, mentor and support NGOs and health actors to engage with the EU, particularly local organisations, those working with disadvantaged communities and in central and Eastern Europe; - We participate in policy debates and stakeholder dialogues to raise the profile of health in all policy areas, supporting collaboration and partnerships between non-governmental organisations and other organisations active at European, national and local level on health promotion and public health.
Loading...
EPHA Similar Companies
Reinvent Australia
The purpose of Reinvent Australia (RA) is to advance leadership on issues critical to the well-being of Australia and the quality of life of all Australians. RA advocates for a long-term, strategic approach by government and business to address the social and economic challenges facing the nation.
Rural Municipalities of Alberta
The Rural Municipalities of Alberta (RMA) is a progressive, independent association committed to meeting the diverse and changing needs of Alberta’s 69 counties and municipal districts. Since 1909, the RMA has helped rural municipalities achieve strong, effective local government through advocacy an
Hunger Free Vermont
Hunger Free Vermont operates on a simple formula: it ensures that children have food wherever they are in their day, that adults and seniors can provide healthy meals at home, and Hunger Free Vermont offers nutrition and cooking classes to ensure that Vermont youth and adults know how to prepare nut
Europe Direct Information Centre for the Black Country
The Europe Direct Information Centre (EDIC) for the Black Country is your local information contact point on Europe, delivered by the Black Country Chamber of Commerce and funded by the European Commission. As an EDIC, the Black Country Chamber of Commerce will engage on European Union (EU) topics
SECURITY EUROPE
SecEUR sprl is an information publisher and consulting company devoted to EU civil security-related policy, R&D and business. Based in Brussels, it informs and assists stakeholders in identifying and pursuing opportunities on the civil security market. Its services include SECURITY EUROPE, the month
The Steamboat Institute
The Steamboat Institute promotes America’s first principles and inspires active involvement in the defense of liberty. Here at the Steamboat Institute, we are Defenders of Freedom and Advocates of Liberty. We are admirers of the bravery and rugged individualism that has made this country great. We
.png)
EPHA CyberSecurity News
July 16, 2025 07:00 AM
EU funding cuts force health NGOs to slash staff
The squeeze on NGOs will have “serious long-term consequences for democracy,” warned one NGO chief.
September 24, 2024 07:00 AM
Strengthening countries' cooperation to safeguard children and adolescents from screen addiction and to protect mental health
Guest article by Dr Line Farah, Director of the national digital programs on “digital and aging well” and “digital in mental health”,...
September 13, 2024 07:00 AM
The job no one wants: EU health commissioner
It wasn't so long ago the EU's health unit was having its moment in the sun. Off the back of the Covid-19 pandemic it was gifted an extra €5...
July 19, 2024 07:00 AM
Ursula von der Leyen approved for a second term, with priorities a kaleidoscope of political colours
The European Public Health Alliance welcomes and congratulates Ursula von der Leyen for her second mandate as President of the European Commission.
June 17, 2024 07:00 AM
Vandenbroucke is a top pick for EU health commissioner. But the chances are slim.
Belgian Health Minister Frank Vandenbroucke has a great CV for the EU's top health post. But will Belgium let him go?
May 20, 2024 07:00 AM
Toxic bullying claims blow up Brussels’ biggest health NGO
The European Public Health Alliance (EPHA) is engulfed in crisis, after claims of harassment and a toxic work culture, and a wave of resignations.
April 04, 2024 07:00 AM
The most chaotic NGO in town
All is not well at the European Public Health Alliance (EPHA). In what we're hoping won't become a regular feature of EU Influence, there has been yet another...
March 28, 2024 07:00 AM
Von der Leyen and the dark horse lobby
Many of my fellow journos engaged in some rare public advocacy on behalf of our colleague, the Wall Street Journal's Evan Gershkovich, detained almost exactly...
June 30, 2023 07:00 AM
WHO/Europe and the EPHA sign new MoU to strengthen collaboration for better health and well-being in Europe
In a significant step towards promoting health equity and improving people's health, WHO/Europe and the European Public Health Alliance...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
EPHA CyberSecurity History Information
Official Website of European Public Health Alliance (EPHA)
The official website of European Public Health Alliance (EPHA) is http://www.epha.org.
European Public Health Alliance (EPHA)’s AI-Generated Cybersecurity Score
According to Rankiteo, European Public Health Alliance (EPHA)’s AI-generated cybersecurity score is 657, reflecting their Weak security posture.
How many security badges does European Public Health Alliance (EPHA)’ have ?
According to Rankiteo, European Public Health Alliance (EPHA) currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does European Public Health Alliance (EPHA) have SOC 2 Type 1 certification ?
According to Rankiteo, European Public Health Alliance (EPHA) is not certified under SOC 2 Type 1.
Does European Public Health Alliance (EPHA) have SOC 2 Type 2 certification ?
According to Rankiteo, European Public Health Alliance (EPHA) does not hold a SOC 2 Type 2 certification.
Does European Public Health Alliance (EPHA) comply with GDPR ?
According to Rankiteo, European Public Health Alliance (EPHA) is not listed as GDPR compliant.
Does European Public Health Alliance (EPHA) have PCI DSS certification ?
According to Rankiteo, European Public Health Alliance (EPHA) does not currently maintain PCI DSS compliance.
Does European Public Health Alliance (EPHA) comply with HIPAA ?
According to Rankiteo, European Public Health Alliance (EPHA) is not compliant with HIPAA regulations.
Does European Public Health Alliance (EPHA) have ISO 27001 certification ?
According to Rankiteo,European Public Health Alliance (EPHA) is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of European Public Health Alliance (EPHA)
European Public Health Alliance (EPHA) operates primarily in the Public Policy Offices industry.
Number of Employees at European Public Health Alliance (EPHA)
European Public Health Alliance (EPHA) employs approximately 36 people worldwide.
Subsidiaries Owned by European Public Health Alliance (EPHA)
European Public Health Alliance (EPHA) presently has no subsidiaries across any sectors.
European Public Health Alliance (EPHA)’s LinkedIn Followers
European Public Health Alliance (EPHA)’s official LinkedIn profile has approximately 17,853 followers.
NAICS Classification of European Public Health Alliance (EPHA)
European Public Health Alliance (EPHA) is classified under the NAICS code 921, which corresponds to Executive, Legislative, and Other General Government Support.
European Public Health Alliance (EPHA)’s Presence on Crunchbase
No, European Public Health Alliance (EPHA) does not have a profile on Crunchbase.
European Public Health Alliance (EPHA)’s Presence on LinkedIn
Yes, European Public Health Alliance (EPHA) maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/european-public-health-alliance.
Cybersecurity Incidents Involving European Public Health Alliance (EPHA)
As of November 27, 2025, Rankiteo reports that European Public Health Alliance (EPHA) has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
European Public Health Alliance (EPHA) has an estimated 1,031 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at European Public Health Alliance (EPHA) ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
Incident Details
Can you provide details on each incident ?
Title: The Green Nailao Campaign: NailaoLocker Ransomware Attack on European Healthcare Entities
Description: Between June and October 2024, European healthcare entities were targeted by the NailaoLocker ransomware as part of The Green Nailao campaign. The attackers exploited a zero-day flaw, CVE-2024-24919, in Check Point VPN appliances to gain unauthorized access. The ransomware, which exhibited poor design and a lack of sophisticated features, encrypted files and appended a '.locked' extension, demanding a ransom paid in Bitcoin. No indication of data theft was mentioned in the ransom note. The threat actors, potentially linked to Chinese APTs, used ShadowPad and PlugX malware for lateral movement and persistence, with motives ranging from espionage to financial gain. The attack disrupted healthcare services and potentially risked patient data, although the full extent of the damage remains undisclosed.
Type: Ransomware
Attack Vector: Zero-day vulnerability exploitation in Check Point VPN appliances
Vulnerability Exploited: CVE-2024-24919
Threat Actor: Potentially linked to Chinese APTs
Motivation: EspionageFinancial gain
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Zero-day flaw, CVE-2024-24919 and in Check Point VPN appliances.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware EUR000022125
Downtime: Disrupted healthcare services
Which entities were affected by each incident ?
Data Breach Information
What type of data was compromised in each breach ?
Incident : Ransomware EUR000022125
Data Exfiltration: No indication of data theft
Data Encryption: Files encrypted with '.locked' extension
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : Ransomware EUR000022125
Ransom Demanded: Demanded ransom paid in Bitcoin
Ransomware Strain: NailaoLocker
Data Encryption: Files encrypted with '.locked' extension
Data Exfiltration: No indication of data theft
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Ransomware EUR000022125
Entry Point: Zero-day flaw, CVE-2024-24919, in Check Point VPN appliances
High Value Targets: Healthcare entities
Data Sold on Dark Web: Healthcare entities
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Ransomware EUR000022125
Root Causes: Exploitation of zero-day flaw in Check Point VPN appliances
Additional Questions
General Information
What was the amount of the last ransom demanded ?
Last Ransom Demanded: The amount of the last ransom demanded was Demanded ransom paid in Bitcoin.
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Potentially linked to Chinese APTs.
Ransomware Information
What was the highest ransom demanded in a ransomware incident ?
Highest Ransom Demanded: The highest ransom demanded in a ransomware incident was Demanded ransom paid in Bitcoin.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker were an Zero-day flaw, CVE-2024-24919 and in Check Point VPN appliances.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=european-public-health-alliance' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
