Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
HMSA

HMSA Vendor Cyber Rating & Cyber Score

hmsa.com

The Hawaii Medical Service Association (HMSA), an independent licensee of the Blue Cross and Blue Shield Association, is a reliable name in Hawaii health care. Established in 1938, we are the largest and most experienced provider of health care coverage in the state. Over half of Hawaii’s population have chosen HMSA for their health care coverage. We are dedicated to providing quality, affordable health plans; employee benefit services; and worksite wellness programs. HMSA also offers a variety of programs, services and support to help improve the health and well-being of our members and community.


HMSA A.I CyberSecurity Scoring

HMSA
Company Information
Website:http://www.hmsa.com
Employees number:1,474
Number of followers:10,423
NAICS:524
Industry Type:Insurance
Homepage:hmsa.com
HMSA Risk Score (AI oriented)
Between 700 and 749
logo
HMSAInsurance
Updated:
02/04/2026
703/1000
Moderate
Ba
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
HMSA Global Score (TPRM)
xxxx
logo
HMSAInsurance
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

HMSA
HMSAModerate
Current Score
703Ba (MODERATE)
01000
2 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
706Before Incident
JUNE 2026
706Before Incident
MAY 2026
704Before Incident
APRIL 2026
703Before Incident
MARCH 2026
702Before Incident
FEBRUARY 2026
701Before Incident
JANUARY 2026
700Before Incident
DECEMBER 2025
699Before Incident
NOVEMBER 2025
698Before Incident
OCTOBER 2025
697Before Incident
SEPTEMBER 2025
695Before Incident
AUGUST 2025
694Before Incident
DECEMBER 2024
745Before Incident
Breach
09 Dec 2024HMSA
HMSA: Health Management Systems of America Data Breach Investigation

HMSA Data Breach Due to Spear Phishing

682After Incident
CRITICAL-63
HMS1765907786
HMSA Data Breach Exposes Sensitive Health and Personal Information Hawaii Medical Service Association (HMSA) disclosed a data breach on December 9, 2024, after detecting unauthorized access to a single employee email account due to a spear phishing attack. The incident prompted an internal investigation, which confirmed that an unauthorized third party may have accessed and acquired sensitive personal identifiable information (PII) and protected health information (PHI) contained in the compromised emails. While HMSA has not publicly detailed the specific types of data exposed as of December 16, 2025, the breach notice indicates that affected individuals will receive a list of the impacted information. The organization has posted a breach notification on its website, though the full scope of the incident—including the number of individuals affected—remains unclear. The breach highlights ongoing risks posed by targeted phishing campaigns in the healthcare sector.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Data Compromised: Sensitive personal identifiable information and protected health informationSystems Affected: Single email accountIdentity Theft Risk: High
DATA BREACH
Personal Identifiable InformationProtected Health InformationSensitivity Of Data: HighData Exfiltration: PossiblePersonally Identifiable Information: Yes
JUNE 2016
757Before Incident
Breach
16 Jun 2016HMSA
HMSA

HMSA Data Breach Incident

677After Incident
CRITICAL-80
HMS11617522
Hawai‘i Medical Service Association suffered a data breach incident in 2016 which exposed the personal information of 10,800 members. The privacy breach was caused because of an error made with the mailing of care management letters to members. The emails that were sent to incorrect individuals included information about members' specific health condition, Social Security numbers, or other sensitive personal information. HMSA immediately responded to the incident and asked the receiving party to delete the emails and notified the impacted persons of the breach.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Specific health conditionsSocial Security numbersOther sensitive personal information
DATA BREACH
Specific health conditionsSocial Security numbersOther sensitive personal informationSensitivity Of Data: High

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for HMSA ?
?
What was HMSA's A.I Rankiteo Cyber Score in June 2026 ?
?
What was HMSA's A.I Rankiteo Cyber Score in May 2026 ?
?
What was HMSA's A.I Rankiteo Cyber Score in April 2026 ?
?
What was HMSA's A.I Rankiteo Cyber Score in March 2026 ?
?
What was HMSA's A.I Rankiteo Cyber Score in February 2026 ?
?
What was HMSA's A.I Rankiteo Cyber Score in January 2026 ?
?
What was HMSA's A.I Rankiteo Cyber Score in December 2025 ?
?
What was HMSA's A.I Rankiteo Cyber Score in November 2025 ?
?
What was HMSA's A.I Rankiteo Cyber Score in October 2025 ?
?
What was HMSA's A.I Rankiteo Cyber Score in September 2025 ?
?
What was HMSA's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on HMSA's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with HMSA ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view HMSA's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?