ISO 27001 Certificate
SOC 1 Type I Certificate
SOC 2 Type II Certificate
PCI DSS
HIPAA
RGPD
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions

Homewood Health Company CyberSecurity Posture

homewoodhealth.com
ISOSOC2 Type 1SOC2 Type 2PCI DSSHIPAAGDPR

As Canada's leader in mental health and addiction services, we provide a continuum of stay at work, return to work and treatment services through our team of over 4,500 staff and clinical professionals. Homewood services focus on helping people and organizations get better. With over 130 years of experience in mental health and addictions, we create, innovate, and collaborate everyday to improve our care and improve lives

Homewood Health A.I CyberSecurity Scoring

Homewood Health

Company Details

Linkedin ID:

homewood-health

Website:

http://www.homewoodhealth.com

Employees number:

1,237

Number of followers:

9,306

NAICS:

62133

Industry Type:

Mental Health Care

Homepage:

homewoodhealth.com

IP Addresses:

0

Company ID:

HOM_3265453

Scan Status:

In-progress

AI scoreHomewood Health Risk Score (AI oriented)

Between 700 and 749

https://images.rankiteo.com/companyimages/homewood-health.jpeg
Homewood Health Mental Health Care
Updated:
  • Powered by our proprietary A.I cyber incident model
  • Insurance preferes TPRM score to calculate premium
globalscoreHomewood Health Global Score (TPRM)

XXXX

https://images.rankiteo.com/companyimages/homewood-health.jpeg
Homewood Health Mental Health Care
  • Instant access to detailed risk factors
  • Benchmark vs. industry & size peers
  • Vulnerabilities
  • Findings

Homewood Health Company CyberSecurity News & History

Past Incidents
1
Attack Types
1
EntityTypeSeverityImpactSeenBlog DetailsIncident DetailsView
Homewood HealthData Leak8537/2021
HOM22475223
Rankiteo Explanation :
Attack with significant impact with internal employee data leaks

Description: Homewood health was targeted by a cyber attack on July 2021. The personal information of 100 employees has already been posted online as a "teaser" or sample of the kind of material the hackers possess, which they provide to attempt and assess the legitimacy and usefulness of the rest of the data bundle. Hackers said that some of the data will be sold and the remainder would be made public. Homewood claims it has gotten in touch with the police and employed its own detectives and specialists to help them.

Homewood Health
Data Leak
Severity: 85
Impact: 3
Seen: 7/2021
Blog:
HOM22475223
Rankiteo Explanation
Attack with significant impact with internal employee data leaks

Description: Homewood health was targeted by a cyber attack on July 2021. The personal information of 100 employees has already been posted online as a "teaser" or sample of the kind of material the hackers possess, which they provide to attempt and assess the legitimacy and usefulness of the rest of the data bundle. Hackers said that some of the data will be sold and the remainder would be made public. Homewood claims it has gotten in touch with the police and employed its own detectives and specialists to help them.

Ailogo

Homewood Health Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

🔒
Incident Predictions locked
Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

🔒
A.I. Risk Score Predictions locked
Access Monitoring Plan
statics

Underwriter Stats for Homewood Health

Incidents vs Mental Health Care Industry Average (This Year)

No incidents recorded for Homewood Health in 2025.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Homewood Health in 2025.

Incident Types Homewood Health vs Mental Health Care Industry Avg (This Year)

No incidents recorded for Homewood Health in 2025.

Incident History — Homewood Health (X = Date, Y = Severity)

Homewood Health cyber incidents detection timeline including parent company and subsidiaries

Homewood Health Company Subsidiaries

SubsidiaryImage

As Canada's leader in mental health and addiction services, we provide a continuum of stay at work, return to work and treatment services through our team of over 4,500 staff and clinical professionals. Homewood services focus on helping people and organizations get better. With over 130 years of experience in mental health and addictions, we create, innovate, and collaborate everyday to improve our care and improve lives

similarCompanies

Homewood Health Similar Companies

Parnassia Groep
parnassiagroep.nl

Parnassia Groep is er voor uw gezondheid, dat doen wij met ruim 8.000 medewerkers. Zij zijn werkzaam op 560 locaties, die u vindt vooral in onze drie kernregio's Noord-Holland, Haaglanden, Rijnmond (waaronder de Zuid-Hollandse Eilanden). Welk psychisch of psychiatrisch probleem u ook heeft, wij h

Security Report Compare
newsone

Homewood Health CyberSecurity News

August 04, 2025 07:00 AM
Back to school: New programs, policies, faces await Homewood students this year

Homewood students will log in to more than just reading and math this fall — they'll be among the first in the nation to tackle a brand-new...

Read Article
February 04, 2025 08:00 AM
Homewood Health Centre Relaunches Nationally Recognized Eating Disorders Program

In recognition of Eating Disorders Awareness Week, Homewood Health Centre, Canada's leading inpatient facility for mental health, trauma,...

Read Article
May 13, 2022 07:00 AM
Mental health data of 700 Concordia employees leaked by hackers

Concordia's employee assistance program, Homewood Health, was the target of an extortion attempt. Hackers exposed the private health...

Read Article
August 05, 2021 07:00 AM
Sanford Health, Eskenazi Health recovering from cyberattacks in EHR downtime

Indianapolis-based Eskenazi Health and Sanford Health in South Dakota are currently operating under EHR downtime procedures, after falling...

Read Article
August 03, 2021 07:00 AM
Homewood Health confirms data breach hit

National healthcare chain Homewood Health has confirmed that it sustained a data breach earlier this year, and that stolen information was leaked on a hacker...

Read Article
July 30, 2021 07:00 AM
Albertans' personal information exposed after national health-care provider hacked, data put up for sale

A listing on Marketo, a self-described "leaked data marketplace," claimed to be selling more than 180 gigabytes of the company's data...

Read Article
July 30, 2021 07:00 AM
City of Spruce Grove exposed in Homewood Health hack

The City of Spruce Grove was victimized in a recent cyberattack and massive data breach that hit national health-care provider Homewood...

Read Article
July 30, 2021 07:00 AM
Albertans' personal data up for sale after hackers extort health company

Ontario-based Homewood Health told CTV News it was hacked earlier this year and has recently begun contacting affected companies and...

Read Article
July 29, 2021 07:00 AM
Halifax Public Libraries' data posted for sale on dark web marketplace

Some of Halifax Public Libraries' data has made its way to a dark web marketplace.

Read Article
faq

Frequently Asked Questions

Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.

Homewood Health CyberSecurity History Information

Official Website of Homewood Health

The official website of Homewood Health is http://www.homewoodhealth.com.

Homewood Health’s AI-Generated Cybersecurity Score

According to Rankiteo, Homewood Health’s AI-generated cybersecurity score is 734, reflecting their Moderate security posture.

How many security badges does Homewood Health’ have ?

According to Rankiteo, Homewood Health currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Does Homewood Health have SOC 2 Type 1 certification ?

According to Rankiteo, Homewood Health is not certified under SOC 2 Type 1.

Does Homewood Health have SOC 2 Type 2 certification ?

According to Rankiteo, Homewood Health does not hold a SOC 2 Type 2 certification.

Does Homewood Health comply with GDPR ?

According to Rankiteo, Homewood Health is not listed as GDPR compliant.

Does Homewood Health have PCI DSS certification ?

According to Rankiteo, Homewood Health does not currently maintain PCI DSS compliance.

Does Homewood Health comply with HIPAA ?

According to Rankiteo, Homewood Health is not compliant with HIPAA regulations.

Does Homewood Health have ISO 27001 certification ?

According to Rankiteo,Homewood Health is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Industry Classification of Homewood Health

Homewood Health operates primarily in the Mental Health Care industry.

Number of Employees at Homewood Health

Homewood Health employs approximately 1,237 people worldwide.

Subsidiaries Owned by Homewood Health

Homewood Health presently has no subsidiaries across any sectors.

Homewood Health’s LinkedIn Followers

Homewood Health’s official LinkedIn profile has approximately 9,306 followers.

NAICS Classification of Homewood Health

Homewood Health is classified under the NAICS code 62133, which corresponds to Offices of Mental Health Practitioners (except Physicians).

Homewood Health’s Presence on Crunchbase

No, Homewood Health does not have a profile on Crunchbase.

Homewood Health’s Presence on LinkedIn

Yes, Homewood Health maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/homewood-health.

Cybersecurity Incidents Involving Homewood Health

As of December 26, 2025, Rankiteo reports that Homewood Health has experienced 1 cybersecurity incidents.

Number of Peer and Competitor Companies

Homewood Health has an estimated 5,269 peer or competitor companies worldwide.

What types of cybersecurity incidents have occurred at Homewood Health ?

Incident Types: The types of cybersecurity incidents that have occurred include Data Leak.

How does Homewood Health detect and respond to cybersecurity incidents ?

Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with private detectives and specialists, and law enforcement notified with yes..

Incident Details

Can you provide details on each incident ?

Incident : Data Breach

measurementExposure impactImpact

Title: Homewood Health Cyber Attack

Description: Homewood Health was targeted by a cyber attack in July 2021. The personal information of 100 employees was posted online as a teaser. Hackers threatened to sell some data and make the rest public. Homewood Health has contacted the police and employed its own detectives and specialists to help.

Date Detected: 2021-07-01

Type: Data Breach

Motivation: FinancialDisruption

What are the most common types of attacks the company has faced ?

Common Attack Types: The most common types of attacks the company has faced is Data Leak.

Impact of the Incidents

What was the impact of each incident ?

Incident : Data Breach HOM22475223

Data Compromised: Personal Information

What types of data are most commonly compromised in incidents ?

Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personal Information.

Which entities were affected by each incident ?

Incident : Data Breach HOM22475223

Entity Name: Homewood Health

Entity Type: Healthcare

Industry: Healthcare

Response to the Incidents

What measures were taken in response to each incident ?

Incident : Data Breach HOM22475223

Third Party Assistance: Private Detectives and Specialists

Law Enforcement Notified: Yes

How does the company involve third-party assistance in incident response ?

Third-Party Assistance: The company involves third-party assistance in incident response through Private Detectives and Specialists.

Data Breach Information

What type of data was compromised in each breach ?

Incident : Data Breach HOM22475223

Type of Data Compromised: Personal Information

Number of Records Exposed: 100

Data Exfiltration: Yes

Personally Identifiable Information: Yes

Post-Incident Analysis

What is the company's process for conducting post-incident analysis ?

Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Private Detectives and Specialists.

Additional Questions

Incident Details

What was the most recent incident detected ?

Most Recent Incident Detected: The most recent incident detected was on 2021-07-01.

Impact of the Incidents

What was the most significant data compromised in an incident ?

Most Significant Data Compromised: The most significant data compromised in an incident was Personal Information.

Response to the Incidents

What third-party assistance was involved in the most recent incident ?

Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was Private Detectives and Specialists.

Data Breach Information

What was the most sensitive data compromised in a breach ?

Most Sensitive Data Compromised: The most sensitive data compromised in a breach was Personal Information.

What was the number of records exposed in the most significant breach ?

Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 100.0.

cve

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contact_us.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

C-Kermit (aka ckermit) through 10.0 Beta.12 (aka 416-beta12) before 244644d allows a remote Kermit system to overwrite files on the local system, or retrieve arbitrary files from the local system.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss3
Base: 8.9
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L
References
Description

Telenium Online Web Application is vulnerable due to a Perl script that is called to load the login page. Due to improper input validation, an attacker can inject arbitrary Perl code through a crafted HTTP request, leading to remote code execution on the server.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Fujitsu / Fsas Technologies ETERNUS SF ACM/SC/Express (DX / AF Management Software) before 16.8-16.9.1 PA 2025-12, when collected maintenance data is accessible by a principal/authority other than ETERNUS SF Admin, allows an attacker to potentially affect system confidentiality, integrity, and availability.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss3
Base: 5.6
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
References
Description

ONLYOFFICE Docs before 9.2.1 allows XSS in the textarea of the comment editing form. This is related to DocumentServer.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss3
Base: 6.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
References

Access Data Using Our API

SubsidiaryImage

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=homewood-health' -H 'apikey: YOUR_API_KEY_HERE'
Try It API Documentation rapidRapid

What Do We Measure ?

revertimgrevertimgrevertimgrevertimg
Incident
revertimgrevertimgrevertimgrevertimg
Finding
revertimgrevertimgrevertimgrevertimg
Grade
revertimgrevertimgrevertimgrevertimg
Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network Security

Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)

Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)

Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat Intelligence

Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Top LeftTop RightBottom LeftBottom Right
Rankiteo
By Rankiteo
View on G2.com
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
View latest reports → View all security reports →
Users Love Us Badge