Health PEI is a crown corporation responsible for the operation and delivery of publicly funded health services in Prince Edward Island, Canada. The organization operates hospitals, health centres, public long-term care nursing facilities and community-based programs and services.
We’re evolving health care so everyone can have the opportunity to live their healthiest life. It’s why we put your unique needs at the heart of everything we do, making it easy and affordable to manage health and well-being. We are delivering the right care how and when it’s needed; providing support to make smarter and healthier choices; and making prescription services easier, while helping you save money along the way. It’s everything health care should be. Together, for better health. Optum is part of UnitedHealth Group (NYSE: UNH).
Security & Compliance Standards Overview
No incidents recorded for Health PEI in 2025.
No incidents recorded for Optum in 2025.
Health PEI cyber incidents detection timeline including parent company and subsidiaries
Optum cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
Improper Authorization (CWE-285) in Kibana can lead to privilege escalation (CAPEC-233) by allowing an authenticated user to bypass intended permission restrictions via a crafted HTTP request. This allows an attacker who lacks the live queries - read permission to successfully retrieve the list of live queries.
Weblate is a web based localization tool. In versions prior to 5.15.1, it was possible to overwrite Git configuration remotely and override some of its behavior. Version 5.15.1 fixes the issue.
Allocation of Resources Without Limits or Throttling (CWE-770) in Elasticsearch can allow an authenticated user with snapshot restore privileges to cause Excessive Allocation (CAPEC-130) of memory and a denial of service (DoS) via crafted HTTP request.
Allocation of Resources Without Limits or Throttling (CWE-770) in Kibana can allow a low-privileged authenticated user to cause Excessive Allocation (CAPEC-130) of computing resources and a denial of service (DoS) of the Kibana process via a crafted HTTP request.
Improper neutralization of input during web page generation ('Cross-site Scripting') (CWE-79) allows an unauthenticated user to embed a malicious script in content that will be served to web browsers causing cross-site scripting (XSS) (CAPEC-63) via a vulnerability a function handler in the Vega AST evaluator.
