Comparison Overview

IHH Healthcare

VS

WellSpan Health

IHH Healthcare

Level 11 Block A, Pantai Hospital Kuala Lumpur, 8 Jalan Bukit Pantai, Kuala Lumpur, MY, 59100
Last Update: 2025-12-09
View Profile
Between 750 and 799
http://www.ihhhealthcare.com/

A world-leading integrated healthcare provider, IHH believes that making a difference starts with our aspiration to Care. For Good. Our team of 65,000 people commit to deliver greater good to our patients, people, the public and our planet, as we live our purpose each day to touch lives and transform care. Through our portfolio of trusted brands – Acibadem, Mount Elizabeth, Prince Court, Gleneagles, Fortis, Pantai and Parkway – we offer our patients comprehensive and personalised care ranging from primary to quaternary, and even ancillary services such as laboratory, diagnostics, imaging and rehabilitation. With our scale and reach in 10 countries, we continue to raise the bar in healthcare in our key markets of Malaysia, Singapore, Türkiye, India, Greater China (including Hong Kong) and beyond. In partnership with our stakeholders, we will co-create a sustainable future for all as we work towards our vision to become the world’s most trusted healthcare services network.

NAICS: 62
NAICS Definition: Health Care and Social Assistance
Employees: 25,724
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

WellSpan Health

45 Monument Road, Suite 200, York, PA, US, 17403
Last Update: 2025-12-09
Between 750 and 799
http://www.wellspan.org/about-wellspan

WellSpan Health’s vision is to reimagine healthcare through the delivery of comprehensive, equitable health and wellness solutions throughout our continuum of care. As an integrated delivery system focused on leading in value-based care, we encompass more than 2,500 employed providers, more than 250 locations, nine award-winning hospitals, home care and a behavioral health organization serving central Pennsylvania and northern Maryland. Our high-performing Medicare Accountable Care Organization (ACO) is the region’s largest and one of the best in the nation. With a team 23,000 strong, WellSpan experts provide a range of services, from wellness and employer services solutions to advanced care for complex medical and behavioral conditions. Our clinically integrated network of 3,000 aligned physicians and advanced practice providers is dedicated to providing the highest quality and safety, inspiring our patients and communities to be their healthiest. Interested in careers at WellSpan? Find available roles at joinwellspan.org.

NAICS: 62
NAICS Definition: Health Care and Social Assistance
Employees: 10,975
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/ihh-healthcare.jpeg
IHH Healthcare
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/wellspan-health.jpeg
WellSpan Health
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
IHH Healthcare
100%
Compliance Rate
0/4 Standards Verified
WellSpan Health
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Hospitals and Health Care Industry Average (This Year)

No incidents recorded for IHH Healthcare in 2025.

Incidents vs Hospitals and Health Care Industry Average (This Year)

No incidents recorded for WellSpan Health in 2025.

Incident History — IHH Healthcare (X = Date, Y = Severity)

IHH Healthcare cyber incidents detection timeline including parent company and subsidiaries

Incident History — WellSpan Health (X = Date, Y = Severity)

WellSpan Health cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/ihh-healthcare.jpeg
IHH Healthcare
Incidents

No Incident

https://images.rankiteo.com/companyimages/wellspan-health.jpeg
WellSpan Health
Incidents

No Incident

FAQ

IHH Healthcare company demonstrates a stronger AI Cybersecurity Score compared to WellSpan Health company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, WellSpan Health company has disclosed a higher number of cyber incidents compared to IHH Healthcare company.

In the current year, WellSpan Health company and IHH Healthcare company have not reported any cyber incidents.

Neither WellSpan Health company nor IHH Healthcare company has reported experiencing a ransomware attack publicly.

Neither WellSpan Health company nor IHH Healthcare company has reported experiencing a data breach publicly.

Neither WellSpan Health company nor IHH Healthcare company has reported experiencing targeted cyberattacks publicly.

Neither IHH Healthcare company nor WellSpan Health company has reported experiencing or disclosing vulnerabilities publicly.

Neither IHH Healthcare nor WellSpan Health holds any compliance certifications.

Neither company holds any compliance certifications.

Neither IHH Healthcare company nor WellSpan Health company has publicly disclosed detailed information about the number of their subsidiaries.

IHH Healthcare company employs more people globally than WellSpan Health company, reflecting its scale as a Hospitals and Health Care.

Neither IHH Healthcare nor WellSpan Health holds SOC 2 Type 1 certification.

Neither IHH Healthcare nor WellSpan Health holds SOC 2 Type 2 certification.

Neither IHH Healthcare nor WellSpan Health holds ISO 27001 certification.

Neither IHH Healthcare nor WellSpan Health holds PCI DSS certification.

Neither IHH Healthcare nor WellSpan Health holds HIPAA certification.

Neither IHH Healthcare nor WellSpan Health holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 8.1
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
References
Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 2.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
References
Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
References
Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 5.8
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
References