LHS
Company Details
Linkedin ID:
lorien-health-services
Website:
Employees number:
571
Number of followers:
3,673
NAICS:
62
Industry Type:
Homepage:
lorienhealth.com
IP Addresses:
0
Company ID:
LOR_2447296
Scan Status:
In-progress
Lorien Health Services Company CyberSecurity Posture
lorienhealth.com
You and your loved one deserve a place to support a healthy lifestyle, encourage wellness, and provide a comfortable environment until you get home. Whatever your needs, long or short- term care, special medical treatment, or simply a location close to family and friends, Lorien is the place for you. At Lorien we understand your needs and are devoted to meeting them, while maintaining a positive and effective level of communication between staff, residents and their family members. As a family owned and operated company, it's more than just a business - it's a way of life. Nine communities throughout Maryland keeps you close to family and friends. Taneytown - Mt. Airy - Columbia - Ellicott City - Elkridge - Timonium - Bel Air - Belcamp - Havre de Grace Our comfortable atmosphere always makes you feel welcome and at ease. From the tasteful dining area to the outside recreation areas, family and friends will look forward to visits in our welcoming environments. The elegant decor sets the atmosphere for the dining experience at Lorien.
Lorien Health Services A.I CyberSecurity Scoring
LHS Risk Score (AI oriented)Between 700 and 749
LHS
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
LHS Global Score (TPRM)XXXX
LHS
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
LHS Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Lorien Health Services
Ransomware
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: Ellicott City, MD-based Lorien Health Services, which runs 9 assisted living facilities in Maryland, experienced a ransomware attack on June 6, 2020. 47,754 Individuals Impacted by Lorien Health Services Ransomware Attack The attackers had accessed files containing residents’ names, addresses, dates of birth, diagnoses, treatment information, and Social Security numbers, and some employee information. Some of that data was stolen in the attack.
LHS Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for LHS
Incidents vs Hospitals and Health Care Industry Average (This Year)
No incidents recorded for Lorien Health Services in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Lorien Health Services in 2025.
Incident Types LHS vs Hospitals and Health Care Industry Avg (This Year)
No incidents recorded for Lorien Health Services in 2025.
Incident History — LHS (X = Date, Y = Severity)
LHS cyber incidents detection timeline including parent company and subsidiaries
LHS Company Subsidiaries
You and your loved one deserve a place to support a healthy lifestyle, encourage wellness, and provide a comfortable environment until you get home. Whatever your needs, long or short- term care, special medical treatment, or simply a location close to family and friends, Lorien is the place for you. At Lorien we understand your needs and are devoted to meeting them, while maintaining a positive and effective level of communication between staff, residents and their family members. As a family owned and operated company, it's more than just a business - it's a way of life. Nine communities throughout Maryland keeps you close to family and friends. Taneytown - Mt. Airy - Columbia - Ellicott City - Elkridge - Timonium - Bel Air - Belcamp - Havre de Grace Our comfortable atmosphere always makes you feel welcome and at ease. From the tasteful dining area to the outside recreation areas, family and friends will look forward to visits in our welcoming environments. The elegant decor sets the atmosphere for the dining experience at Lorien.
Loading...
LHS Similar Companies
UCHealth
At UCHealth, we do things differently. We strive to promote individual and community health and leave no question unanswered along the way. We’re driven to improve and optimize health care. Our network of nationally-recognized hospitals, clinic locations and health care providers extends throughout
Mount Sinai Health System
The Mount Sinai Health System is an integrated health system committed to providing distinguished care, conducting transformative research, and advancing biomedical education. Structured around seven hospital campuses and a single medical school, the Health System has an extensive ambulatory netwo
RWJBarnabas Health is New Jersey’s largest and most comprehensive academic health system, caring for more than 5 million people annually. Nationally renowned for quality and safety, the system includes 14 hospitals and 9,000 affiliated physicians integrated to provide care at more than 700 patient
The Netcare Group (JSE: NTC) offers a unique, comprehensive range of medical services across the healthcare spectrum, enabling us to serve the health and care needs of each individual who entrust their care to us. Our focus on implementing sophisticated digital systems will enable us to provide care
Mass General Brigham
Mass General Brigham is an integrated academic health care system, uniting great minds to solve the hardest problems in medicine for our communities and the world. Mass General Brigham connects a full continuum of care across a system of academic medical centers, community and specialty hospitals, a
Care You Can Count On Whether you are searching for your next career opportunity or looking for care for yourself or a family member, you’ll find what you need at Scripps. Founded in 1924 by philanthropist Ellen Browning Scripps, Scripps is a non-profit integrated health care delivery system based
SSM Health is a Catholic, not-for-profit, fully integrated health system dedicated to advancing innovative, sustainable, and compassionate care for patients and communities throughout the Midwest and beyond. The organization’s 40,000 team members and 13,900 providers are committed to fulfilling SSM
Alberta Health Services
Alberta Health Services (AHS) is proud to be part of Canada’s first and largest provincewide, integrated health system, responsible for delivering health services to more than 4.5 million people living in Alberta, as well as occasionally to some residents of other provinces and territories Our skil
BrightSpring Health Services
BrightSpring is the parent company of a family of services and brands that provides clinical, nonclinical, pharmacy and ancillary care services for people of all ages, health and skill levels across home and community settings. The company is a leading provider of diversified home and community-ba
.png)
LHS CyberSecurity News
November 04, 2025 08:00 AM
Lorien Health Services Receives Prestigious Purple Flag Excellence in Dementia Care Designation
Lorien Health Services has become the first assisted living company in Maryland to receive the prestigious Purple Flag Excellence in...
November 03, 2025 08:00 AM
8 things to know: Major toy retailer to open at local mall
Plus, a charcuterie chain opens another Greater Baltimore location.
May 14, 2025 07:00 AM
Lorien Health Services Names John Mangione Jr. COO and Wayne Brannock CCO
Lorien Health Services, a family-owned assisted living/nursing home company and industry innovator, announced today the promotion of two key...
December 11, 2024 08:00 AM
From Country Clubs to Crime: Meet Luigi Mangione, The Wealthy Heir at the Centre of Brian Thompson's Killing
Luigi Mangione, heir to a holiday resort fortune, was arrested for the murder of UnitedHealthCare CEO Brian Thompson.
December 10, 2024 08:00 AM
Luigi Mangione Destroyed His Grandfather’s Rags-to-Riches Legacy
The paternal grandfather of accused CEO killer Luigi Mangione was once described in a newspaper profile as “relaxed, warm, gracious and hospitable.”
October 02, 2024 07:00 AM
Lorien Assisted Living Names Victoria Rosier Executive Director of Lorien Harmony Hall
Lorien Assisted Living, a family-owned assisted living company and industry innovator, announced today that it has named Victoria Rosier as...
June 24, 2024 08:46 AM
Senior living ransomware attack affects almost 50,000 residents
A data breach at a Maryland long-term care provider potentially exposed the personal information of almost 50,000 residents to hackers.
May 31, 2024 08:05 AM
Canadian extradited to U.S. in $27 million ransomware case affecting senior living
A Canadian national indicted in 2020 in a $27 million ransomware fraud case affecting the senior living industry recently was extradited to the United...
May 14, 2024 11:21 AM
Watermark takes action after data security breach potentially affects people in 10 states
Tucson, AZ-based Watermark Retirement Communities is the latest victim of a data security breach, in this case one that may have compromised the personal...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
LHS CyberSecurity History Information
Official Website of Lorien Health Services
The official website of Lorien Health Services is http://www.lorienhealth.com/.
Lorien Health Services’s AI-Generated Cybersecurity Score
According to Rankiteo, Lorien Health Services’s AI-generated cybersecurity score is 723, reflecting their Moderate security posture.
How many security badges does Lorien Health Services’ have ?
According to Rankiteo, Lorien Health Services currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Lorien Health Services have SOC 2 Type 1 certification ?
According to Rankiteo, Lorien Health Services is not certified under SOC 2 Type 1.
Does Lorien Health Services have SOC 2 Type 2 certification ?
According to Rankiteo, Lorien Health Services does not hold a SOC 2 Type 2 certification.
Does Lorien Health Services comply with GDPR ?
According to Rankiteo, Lorien Health Services is not listed as GDPR compliant.
Does Lorien Health Services have PCI DSS certification ?
According to Rankiteo, Lorien Health Services does not currently maintain PCI DSS compliance.
Does Lorien Health Services comply with HIPAA ?
According to Rankiteo, Lorien Health Services is not compliant with HIPAA regulations.
Does Lorien Health Services have ISO 27001 certification ?
According to Rankiteo,Lorien Health Services is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Lorien Health Services
Lorien Health Services operates primarily in the Hospitals and Health Care industry.
Number of Employees at Lorien Health Services
Lorien Health Services employs approximately 571 people worldwide.
Subsidiaries Owned by Lorien Health Services
Lorien Health Services presently has no subsidiaries across any sectors.
Lorien Health Services’s LinkedIn Followers
Lorien Health Services’s official LinkedIn profile has approximately 3,673 followers.
NAICS Classification of Lorien Health Services
Lorien Health Services is classified under the NAICS code 62, which corresponds to Health Care and Social Assistance.
Lorien Health Services’s Presence on Crunchbase
No, Lorien Health Services does not have a profile on Crunchbase.
Lorien Health Services’s Presence on LinkedIn
Yes, Lorien Health Services maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/lorien-health-services.
Cybersecurity Incidents Involving Lorien Health Services
As of December 26, 2025, Rankiteo reports that Lorien Health Services has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Lorien Health Services has an estimated 31,366 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Lorien Health Services ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
Incident Details
Can you provide details on each incident ?
Title: Lorien Health Services Ransomware Attack
Description: Ellicott City, MD-based Lorien Health Services, which runs 9 assisted living facilities in Maryland, experienced a ransomware attack on June 6, 2020. The attackers had accessed files containing residents’ names, addresses, dates of birth, diagnoses, treatment information, and Social Security numbers, and some employee information. Some of that data was stolen in the attack.
Date Detected: 2020-06-06
Type: Ransomware Attack
Motivation: Financial GainData Theft
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware Attack LOR11816123
Data Compromised: Residents' names, Addresses, Dates of birth, Diagnoses, Treatment information, Social security numbers, Some employee information
Identity Theft Risk: High
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personally Identifiable Information, Health Information, Employee Information and .
Which entities were affected by each incident ?
Incident : Ransomware Attack LOR11816123
Entity Name: Lorien Health Services
Entity Type: Healthcare
Industry: Assisted Living Facilities
Location: Ellicott City, MD
Customers Affected: 47754
Data Breach Information
What type of data was compromised in each breach ?
Incident : Ransomware Attack LOR11816123
Type of Data Compromised: Personally identifiable information, Health information, Employee information
Number of Records Exposed: 47754
Sensitivity of Data: High
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : Ransomware Attack LOR11816123
Data Exfiltration: True
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2020-06-06.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Residents' names, Addresses, Dates of birth, Diagnoses, Treatment information, Social Security numbers, Some employee information and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Social Security numbers, Some employee information, Addresses, Residents' names, Diagnoses, Dates of birth and Treatment information.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 531.0.
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability was found in UTT 进取 512W up to 1.7.7-171114. This vulnerability affects the function strcpy of the file /goform/formConfigNoticeConfig. The manipulation of the argument timestart results in buffer overflow. The attack may be performed from remote. The exploit has been made public and could be used.
Risk Information
cvss2
Base: 9.0
Severity: LOW
AV:N/AC:L/Au:S/C:C/I:C/A:C
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 7.4
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability has been found in UTT 进取 512W up to 1.7.7-171114. This affects the function strcpy of the file /goform/APSecurity. The manipulation of the argument wepkey1 leads to buffer overflow. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used.
Risk Information
cvss2
Base: 9.0
Severity: LOW
AV:N/AC:L/Au:S/C:C/I:C/A:C
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 7.4
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was detected in ketr JEPaaS up to 7.2.8. Affected by this vulnerability is the function postilService.loadPostils of the file /je/postil/postil/loadPostil. Performing manipulation of the argument keyWord results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A security vulnerability has been detected in youlaitech youlai-mall 1.0.0/2.0.0. Affected is the function submitOrderPayment of the file mall-oms/oms-boot/src/main/java/com/youlai/mall/oms/controller/app/OrderController.java. Such manipulation of the argument orderSn leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. The real existence of this vulnerability is still doubted at the moment. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A weakness has been identified in youlaitech youlai-mall 1.0.0/2.0.0. This impacts the function getMemberByMobile of the file mall-ums/ums-boot/src/main/java/com/youlai/mall/ums/controller/app/MemberController.java. This manipulation causes improper access controls. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=lorien-health-services' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
