Grace House
Company Details
Linkedin ID:
grace-house
Website:
Employees number:
36
Number of followers:
109
NAICS:
923
Industry Type:
Homepage:
thegh.org
IP Addresses:
0
Company ID:
GRA_3273936
Scan Status:
In-progress
Grace House Company CyberSecurity Posture
thegh.org
At Grace House, we're dedicated to transforming the lives of those struggling with substance use disorders, including challenges with alcohol and drug addiction, as well as mental health issues, especially among the homeless. We recognize the complex cycle of homelessness, joblessness, and untreated mental illness that plagues our community in Las Vegas. Our approach is twofold: providing specialized medical care for mental health and substance use disorders, and extending support to include job training and educational opportunities. This comprehensive care model ensures our clients are not only treated but also equipped with skills for a successful transition back into society. Our goal is to uplift individuals and contribute to the overall health and economic stability of Las Vegas, creating a positive ripple effect one life at a time.
Grace House A.I CyberSecurity Scoring
Grace House Risk Score (AI oriented)Between 750 and 799
Grace House
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Grace House Global Score (TPRM)XXXX
Grace House
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Grace House Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
Grace House Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Grace House
Incidents vs Health and Human Services Industry Average (This Year)
No incidents recorded for Grace House in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Grace House in 2025.
Incident Types Grace House vs Health and Human Services Industry Avg (This Year)
No incidents recorded for Grace House in 2025.
Incident History — Grace House (X = Date, Y = Severity)
Grace House cyber incidents detection timeline including parent company and subsidiaries
Grace House Company Subsidiaries
At Grace House, we're dedicated to transforming the lives of those struggling with substance use disorders, including challenges with alcohol and drug addiction, as well as mental health issues, especially among the homeless. We recognize the complex cycle of homelessness, joblessness, and untreated mental illness that plagues our community in Las Vegas. Our approach is twofold: providing specialized medical care for mental health and substance use disorders, and extending support to include job training and educational opportunities. This comprehensive care model ensures our clients are not only treated but also equipped with skills for a successful transition back into society. Our goal is to uplift individuals and contribute to the overall health and economic stability of Las Vegas, creating a positive ripple effect one life at a time.
Loading...
Grace House Similar Companies
Friedman Place
Friedman Place is a non-profit Supportive Living Community for blind and visually impaired adults in Chicago. Our building has been designed with the needs of the blind and visually impaired in mind. Each resident has a private studio or one-bedroom apartment, with a kitchenette and bathroom. A full
Apta Psicologia e Neurofeedback
APTA é uma empresa que entrega serviços em Saúde, qualidade de vida e bem estar. Mentorias, cursos e treinamentos focado no desenvolvimento humano. Atendimentos individuais e em grupo, nos formatos presencial e online. Nossa Head, a Dra. Nazareth Ribeiro, Tem uma jornada de inovação em sua carr
MediCarrier AB
Vår uppgift är att distribuera miljöanpassade sjukvårds- och förbrukningsartiklar samt transporttjänster till landstingets enheter och entreprenörer. Vi erbjuder ett brett sortiment om ca 9000 miljöanpassade artiklar, varav ca 3900 är lagerlagda. Artiklarna som ingår i sortimentet är ett noggrant
Esperanza Community Services
About Esperanza Community Services: Established with a passion for empowering individuals with developmental disabilities, Esperanza Community Services has been a beacon of support and inclusivity since its inception in 1969. Our mission is to create a nurturing environment by fostering growth, inde
Vitality Labs LLC
Vitality Labs is an innovative, AI-driven virtual health coach empowering individuals to achieve their wellness goals through personalized, data-driven insights. Harnessing advanced AI analytics, Vitality Labs integrates with popular wearables and health apps to monitor critical health metrics, incl
F5 Project
F5 Project isn’t just a nonprofit—we’re a movement for second chances. What started in 2016 as a grassroots effort in Fargo, ND, has grown into a statewide force breaking cycles of incarceration, addiction, and mental health struggles. We walk alongside people society often overlooks, providing the
.png)
Grace House CyberSecurity News
September 08, 2025 07:00 AM
ARPA-H Leverages AI to Strengthen Health Data Infrastructure, Security
ARPA-H programs use AI to consolidate records, strengthen cybersecurity and optimize biomedical data workflows.
August 22, 2025 07:00 AM
July 2025 Cybersecurity Developments Under the Trump Administration
This is the sixth blog in a series of Covington blogs on cybersecurity policies, executive orders (“EOs”), and other actions of the Trump.
June 09, 2025 07:00 AM
Article | White House invites 46 farm, food groups to discuss MAHA report
The White House has invited nearly 50 food industry groups and companies to discuss a recent report on its Make America Healthy Again goals.
June 04, 2025 07:00 AM
Article | House Republicans' funding plan looks to cut $1B from USDA, FDA budgets
House Republicans are looking to allocate $25.5 billion for federal agriculture spending in the 2026 fiscal year, a cut of more than 4...
May 27, 2025 07:00 AM
April 2025 Cybersecurity Developments Under the Trump Administration
This is the third blog in a series of Covington blogs on cybersecurity policies, executive orders (EOs), and other actions of the new Trump Administration.
April 24, 2025 07:00 AM
Texas Cyber Command inches closer to being established in San Antonio
SAN ANTONIO — A San Antonio cybersecurity company believes Military City USA is the perfect hub for fighting cyberattacks statewide.
February 11, 2025 08:00 AM
Article | House Ag Republicans downplay farmer funding freeze
House Agriculture Committee Republicans are downplaying the impact of Trump administration funding freezes affecting USDA programs even as...
July 13, 2023 07:00 AM
Cyber Operations during the Russo-Ukrainian War
This latest On Future War paper analyzes the interplay of cyber operations in the Ukraine conflict by assessing the impact,...
September 30, 2020 07:00 AM
TV True-Crime Avenger Nancy Grace Is Here to Keep You Safe Online
In her new book, Don't Be a Victim: Fighting Back Against America's Crime Wave, she shares insider knowledge on how to stay safe.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Grace House CyberSecurity History Information
Official Website of Grace House
The official website of Grace House is https://thegh.org.
Grace House’s AI-Generated Cybersecurity Score
According to Rankiteo, Grace House’s AI-generated cybersecurity score is 765, reflecting their Fair security posture.
How many security badges does Grace House’ have ?
According to Rankiteo, Grace House currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Grace House have SOC 2 Type 1 certification ?
According to Rankiteo, Grace House is not certified under SOC 2 Type 1.
Does Grace House have SOC 2 Type 2 certification ?
According to Rankiteo, Grace House does not hold a SOC 2 Type 2 certification.
Does Grace House comply with GDPR ?
According to Rankiteo, Grace House is not listed as GDPR compliant.
Does Grace House have PCI DSS certification ?
According to Rankiteo, Grace House does not currently maintain PCI DSS compliance.
Does Grace House comply with HIPAA ?
According to Rankiteo, Grace House is not compliant with HIPAA regulations.
Does Grace House have ISO 27001 certification ?
According to Rankiteo,Grace House is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Grace House
Grace House operates primarily in the Health and Human Services industry.
Number of Employees at Grace House
Grace House employs approximately 36 people worldwide.
Subsidiaries Owned by Grace House
Grace House presently has no subsidiaries across any sectors.
Grace House’s LinkedIn Followers
Grace House’s official LinkedIn profile has approximately 109 followers.
Grace House’s Presence on Crunchbase
No, Grace House does not have a profile on Crunchbase.
Grace House’s Presence on LinkedIn
Yes, Grace House maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/grace-house.
Cybersecurity Incidents Involving Grace House
As of November 27, 2025, Rankiteo reports that Grace House has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Grace House has an estimated 403 peer or competitor companies worldwide.
Grace House CyberSecurity History Information
How many cyber incidents has Grace House faced ?
Total Incidents: According to Rankiteo, Grace House has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Grace House ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=grace-house' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
