Henry Schein
Company Details
Linkedin ID:
henry-schein
Website:
Employees number:
10,321
Number of followers:
226,724
NAICS:
3391
Industry Type:
Homepage:
henryschein.com
IP Addresses:
0
Company ID:
HEN_2448430
Scan Status:
In-progress
Henry Schein Company CyberSecurity Posture
henryschein.com
Henry Schein, Inc. (Nasdaq: HSIC) is a solutions company for health care professionals powered by a network of people and technology. With more than 25,000 Team Schein Members worldwide, the Company's network of trusted advisors provides more than 1 million customers globally with more than 300 valued solutions that help improve operational success and clinical outcomes. Our Business, Clinical, Technology, and Supply Chain solutions help office-based dental and medical practitioners work more efficiently so they can provide quality care more effectively. These solutions also support dental laboratories, government and institutional health care clinics, as well as other alternate care sites. Henry Schein operates through a centralized and automated distribution network, with a selection of more than 300,000 branded products and Henry Schein corporate brand products in our distribution centers. A FORTUNE 500 Company and a member of the S&P 500® index, Henry Schein is headquartered in Melville, N.Y., and has operations or affiliates in 34 countries and territories. The Company's sales reached $12.7 billion in 2024, and have grown at a compound annual rate of approximately 11.2 percent since Henry Schein became a public company in 1995.
Henry Schein A.I CyberSecurity Scoring
Henry Schein Risk Score (AI oriented)Between 700 and 749
Henry Schein
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Henry Schein Global Score (TPRM)XXXX
Henry Schein
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Henry Schein Company CyberSecurity News & History
Past Incidents
2
Attack Types
1
Henry Schein, Inc.
Breach
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: On December 6, 2023, the California Office of the Attorney General disclosed a data breach affecting Henry Schein, Inc., initially announced on October 15, 2023. The incident involved the unauthorized exposure of employees' personal information, though the exact number of impacted individuals and the breach methodology remain undisclosed. The compromised data may include sensitive employee details, such as names, addresses, Social Security numbers, or financial records, posing risks of identity theft, fraud, or phishing attacks. While the company has not confirmed the attack vector (e.g., phishing, system vulnerability, or insider threat), the breach underscores vulnerabilities in safeguarding internal workforce data. The lack of transparency regarding the scope and cause further complicates risk assessment for affected employees. Regulatory scrutiny and potential legal repercussions may follow, given the sensitivity of the exposed information and compliance obligations under data protection laws like CCPA (California Consumer Privacy Act).
Henry Schein, Inc.
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Maine Office of the Attorney General reported a data breach involving Henry Schein, Inc. on December 6, 2023. The breach occurred on September 27, 2023, and was discovered on October 14, 2023, following an external system breach involving hacking, affecting approximately 29,112 individuals. Identity theft protection services were offered for 24 months through Experian's IdentityWorks.
Henry Schein Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Henry Schein
Incidents vs Medical Equipment Manufacturing Industry Average (This Year)
No incidents recorded for Henry Schein in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Henry Schein in 2026.
Incident Types Henry Schein vs Medical Equipment Manufacturing Industry Avg (This Year)
No incidents recorded for Henry Schein in 2026.
Incident History — Henry Schein (X = Date, Y = Severity)
Henry Schein cyber incidents detection timeline including parent company and subsidiaries
Henry Schein Company Subsidiaries
Henry Schein, Inc. (Nasdaq: HSIC) is a solutions company for health care professionals powered by a network of people and technology. With more than 25,000 Team Schein Members worldwide, the Company's network of trusted advisors provides more than 1 million customers globally with more than 300 valued solutions that help improve operational success and clinical outcomes. Our Business, Clinical, Technology, and Supply Chain solutions help office-based dental and medical practitioners work more efficiently so they can provide quality care more effectively. These solutions also support dental laboratories, government and institutional health care clinics, as well as other alternate care sites. Henry Schein operates through a centralized and automated distribution network, with a selection of more than 300,000 branded products and Henry Schein corporate brand products in our distribution centers. A FORTUNE 500 Company and a member of the S&P 500® index, Henry Schein is headquartered in Melville, N.Y., and has operations or affiliates in 34 countries and territories. The Company's sales reached $12.7 billion in 2024, and have grown at a compound annual rate of approximately 11.2 percent since Henry Schein became a public company in 1995.
Loading...
Henry Schein Similar Companies
Olympus Corporation
Olympus is passionate about creating customer-driven solutions for the medical industry. For more than 100 years, Olympus has focused on making people’s lives healthier, safer and more fulfilling by helping detect, prevent, and treat disease, furthering scientific research, and ensuring public safet
Baxter International Inc.
For nearly a century, we have delivered on our commitment to saving and sustaining the lives of patients, working alongside clinicians and providers around the world. We believe every person — regardless of who they are or where they are from — deserves a chance to live a healthy life, free from ill
STERIS
STERIS is a leading provider of infection prevention and other procedural products and services, focused primarily on healthcare, pharmaceutical and medical device Customers. MISSION WE HELP OUR CUSTOMERS CREATE A HEALTHIER AND SAFER WORLD by providing innovative healthcare and life science product
Medline
Medline is the largest provider of medical-surgical products and supply chain solutions serving all points of care. Through its unique offering of world-class products, supply chain resilience and clinical practice expertise, Medline delivers improved clinical, financial and operational outcomes. He
Beckman Coulter Diagnostics
A global leader in advanced diagnostics, Beckman Coulter has challenged convention to elevate the diagnostic laboratory’s role in improving patient health for more than 80 years. Our mission is to Relentlessly Reimagine Healthcare, One Diagnosis at a Time – and we do this by applying the power of sc
B. Braun Group
As a leading medical technology company, B. Braun protects and improves the health of people around the world. For more than 185 years, the family-owned company has been accelerating progress in health care with pioneering spirit and groundbreaking contributions. This innovative strength continues t
Stryker
Stryker is a global leader in medical technologies and, together with our customers, we are driven to make healthcare better. We offer innovative products and services in MedSurg, Neurotechnology and Orthopaedics that help improve patient and healthcare outcomes. Alongside its customers around the w
Edwards Lifesciences
Edwards Lifesciences (NYSE: EW), is the leading global structural heart innovation company, driven by a passion to improve patient lives. Through breakthrough technologies, world-class evidence and partnerships with clinicians and healthcare stakeholders, our employees are inspired by our patient-fo
BD is one of the largest global medical technology companies in the world and is advancing the world of health™ by improving medical discovery, diagnostics and the delivery of care. The company supports the heroes on the frontlines of health care by developing innovative technology, services and sol
.png)
Henry Schein CyberSecurity News
December 31, 2025 07:46 AM
Two Cybersecurity Pros Enter ALPHV Ransomware Collaboration Guilty Plea
Two incident responders pleaded guilty to charges related to BlackCat ransomware attacks targeting U.S. companies between April and December...
November 04, 2025 08:00 AM
Breach of Trust: Former Employees of Cybersecurity Companies Indicted for Links to ALPHV BlackCat Ransomware
Three U.S. cybersec professionals, including two named individuals, face indictment for allegedly running a ransomware operation with the...
October 03, 2025 07:00 AM
Henry Schein’s TriMed confirms ransomware attack
A Russia-linked cyber gang has claimed that it has cracked open the systems of healthcare giant Henry Schein's TriMed, leaking sensitive...
December 10, 2024 08:00 AM
Henry Schein: The Kind Of Business I Like But No Margin Of Safety Now (NASDAQ:HSIC)
Henry Schein has characteristics like easy-to-understand business, and profitable, among many others. Find out why I rate HSIC a Hold.
October 28, 2024 07:00 AM
News - Harry Schein says 2023 cyber attack impacted over 166,000 individuals
U.S. healthcare solutions provider Henry Schein said the data breach it suffered last year compromised the sensitive personal information of...
October 25, 2024 07:00 AM
Henry Schein Confirms 166,000 Individuals Affected By October 2023 Ransomware Attack
Henry Schein, a Melville, NY-based provider of medical and dental supplies and Fortune 500 firm, has continued to investigate a 2023...
October 25, 2024 07:00 AM
Healthcare giant Henry Schein reveals data breach following major ransomware attack
A year after the incidents, Henry Schein reports more details to authorities.
October 24, 2024 07:00 AM
Henry Schein discloses data breach a year after ransomware attack
Henry Schein has finally disclosed a data breach following at least two back-to-back cyberattacks in 2023 by the BlackCat Ransomware gang,...
October 24, 2024 07:00 AM
Federman & Sherwood Investigates Henry Schein, Inc. for Data Breach
Federman & Sherwood Investigates Henry Schein, Inc. for Data Breach.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Henry Schein CyberSecurity History Information
Official Website of Henry Schein
The official website of Henry Schein is http://www.henryschein.com.
Henry Schein’s AI-Generated Cybersecurity Score
According to Rankiteo, Henry Schein’s AI-generated cybersecurity score is 706, reflecting their Moderate security posture.
How many security badges does Henry Schein’ have ?
According to Rankiteo, Henry Schein currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Henry Schein been affected by any supply chain cyber incidents ?
According to Rankiteo, Henry Schein has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Henry Schein have SOC 2 Type 1 certification ?
According to Rankiteo, Henry Schein is not certified under SOC 2 Type 1.
Does Henry Schein have SOC 2 Type 2 certification ?
According to Rankiteo, Henry Schein does not hold a SOC 2 Type 2 certification.
Does Henry Schein comply with GDPR ?
According to Rankiteo, Henry Schein is not listed as GDPR compliant.
Does Henry Schein have PCI DSS certification ?
According to Rankiteo, Henry Schein does not currently maintain PCI DSS compliance.
Does Henry Schein comply with HIPAA ?
According to Rankiteo, Henry Schein is not compliant with HIPAA regulations.
Does Henry Schein have ISO 27001 certification ?
According to Rankiteo,Henry Schein is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Henry Schein
Henry Schein operates primarily in the Medical Equipment Manufacturing industry.
Number of Employees at Henry Schein
Henry Schein employs approximately 10,321 people worldwide.
Subsidiaries Owned by Henry Schein
Henry Schein presently has no subsidiaries across any sectors.
Henry Schein’s LinkedIn Followers
Henry Schein’s official LinkedIn profile has approximately 226,724 followers.
NAICS Classification of Henry Schein
Henry Schein is classified under the NAICS code 3391, which corresponds to Medical Equipment and Supplies Manufacturing.
Henry Schein’s Presence on Crunchbase
Yes, Henry Schein has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/henry-schein-inc.
Henry Schein’s Presence on LinkedIn
Yes, Henry Schein maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/henry-schein.
Cybersecurity Incidents Involving Henry Schein
As of January 25, 2026, Rankiteo reports that Henry Schein has experienced 2 cybersecurity incidents.
Number of Peer and Competitor Companies
Henry Schein has an estimated 5,643 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Henry Schein ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
How does Henry Schein detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with experian's identityworks..
Incident Details
Can you provide details on each incident ?
Title: Data Breach at Henry Schein, Inc.
Description: The Maine Office of the Attorney General reported a data breach involving Henry Schein, Inc. on December 6, 2023. The breach occurred on September 27, 2023, and was discovered on October 14, 2023, following an external system breach involving hacking, affecting approximately 29,112 individuals. Identity theft protection services were offered for 24 months through Experian's IdentityWorks.
Date Detected: 2023-10-14
Date Publicly Disclosed: 2023-12-06
Type: Data Breach
Attack Vector: Hacking
Title: Henry Schein, Inc. Data Breach (2023)
Description: On December 6, 2023, the California Office of the Attorney General reported a data breach involving Henry Schein, Inc., which was publicly announced on October 15, 2023. The breach potentially affected employees' personal information, although the specific number of individuals affected and the method of breach are currently unknown.
Date Publicly Disclosed: 2023-10-15
Type: Data Breach
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach HEN222072625
Identity Theft Risk: High
Incident : Data Breach HEN034090625
Identity Theft Risk: True
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personal Information (Employees) and .
Which entities were affected by each incident ?
Incident : Data Breach HEN222072625
Entity Name: Henry Schein, Inc.
Entity Type: Company
Industry: Healthcare
Customers Affected: 29112
Incident : Data Breach HEN034090625
Entity Name: Henry Schein, Inc.
Entity Type: Corporation
Industry: Healthcare / Dental & Medical Supplies
Location: Melville, New York, USA
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach HEN222072625
Third Party Assistance: Experian's IdentityWorks
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through Experian's IdentityWorks.
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach HEN222072625
Number of Records Exposed: 29112
Incident : Data Breach HEN034090625
Type of Data Compromised: Personal information (employees)
Sensitivity of Data: High (Personal Information)
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Data Breach HEN034090625
Regulatory Notifications: California Office of the Attorney General
References
Where can I find more information about each incident ?
Incident : Data Breach HEN222072625
Source: Maine Office of the Attorney General
Date Accessed: 2023-12-06
Incident : Data Breach HEN034090625
Source: California Office of the Attorney General
Date Accessed: 2023-12-06
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Office of the Attorney GeneralDate Accessed: 2023-12-06, and Source: California Office of the Attorney GeneralDate Accessed: 2023-12-06.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Data Breach HEN034090625
Investigation Status: Ongoing (details unknown)
Post-Incident Analysis
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Experian's IdentityWorks.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2023-10-14.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2023-10-15.
Impact of the Incidents
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was Experian's IdentityWorks.
Data Breach Information
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 303.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Maine Office of the Attorney General and California Office of the Attorney General.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing (details unknown).
.png)
Latest Global CVEs (Not Company-Specific)
Description
The WP Go Maps (formerly WP Google Maps) plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the processBackgroundAction() function in all versions up to, and including, 10.0.04. This makes it possible for authenticated attackers, with Subscriber-level access and above, to modify global map engine settings.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Description
The Save as PDF Plugin by PDFCrowd plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘options’ parameter in all versions up to, and including, 4.5.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link. NOTE: Successful exploitation of this vulnerability requires that the PDFCrowd API key is blank (also known as "demo mode", which is the default configuration when the plugin is installed) or known.
Risk Information
cvss3
Base: 6.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Description
The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable to arbitrary file uploads due to incorrect file type validation in the action_import_module() function in all versions up to, and including, 7.8.9.2. This makes it possible for authenticated attackers, with a lower-privileged role (e.g., Subscriber-level access and above), to upload arbitrary files on the affected site's server which may make remote code execution possible. Successful exploitation requires an admin to grant Hustle module permissions (or module edit access) to the low-privileged user so they can access the Hustle admin page and obtain the required nonce.
Risk Information
cvss3
Base: 7.5
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Description
The WP Directory Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.9 via the wdk_public_action AJAX handler. This makes it possible for unauthenticated attackers to extract email addresses for users with Directory Kit-specific user roles.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Description
The Meta-box GalleryMeta plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with editor-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.
Risk Information
cvss3
Base: 4.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
References
- https://plugins.trac.wordpress.org/browser/meta-box-gallerymeta/tags/3.0.1/gallerymetaboxes.php#L119
- https://plugins.trac.wordpress.org/browser/meta-box-gallerymeta/tags/3.0.1/gallerymetaboxes.php#L314
- https://plugins.trac.wordpress.org/browser/meta-box-gallerymeta/tags/3.0.1/templates/single-mb_gallery.php#L31
- https://plugins.trac.wordpress.org/browser/meta-box-gallerymeta/tags/3.0.1/templates/single-mb_gallery.php#L33
- https://www.wordfence.com/threat-intel/vulnerabilities/id/bb9ae252-7e5f-4dc0-a162-100493b81980?source=cve
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=henry-schein' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
