Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download

Comparison Overview

Merrimack HealthMerrimack Health
VS
Health Care Service CorporationHealth Care Service Corporation
Merrimack Health

Merrimack Health

1 General St, Lawrence, 01840, US

Last Update: 19/05/2026

View Profile
Between 750 and 799
https://merrimackhealth.org/
771/1000Fair

Merrimack Health is the first regional health care system serving the Merrimack Valley, prioritizing care and services based on the needs of its patients and supporting those who deliver the expert care. Dedicated to the health and well-being of its communities across M...

NAICS:62
NAICS Definition:Health Care and Social Assistance
Employees:2,418
Subsidiaries:1
12-month incidents
0
Known data breaches
0
Attack type number
0
Health Care Service Corporation

Health Care Service Corporation

300 E Randolph St, Chicago, 60601, US

Last Update: 02/04/2026

View Profile
Between 0 and 549
http://www.hcsc.com
427/1000Critical

Health Care Service Corporation serves nearly 23 million people across the United States through its portfolio of health benefit solutions. HCSC provides health coverage options for employers large and small, individuals and families, and Medicare and Medicaid plans. H...

NAICS:62
NAICS Definition:Health Care and Social Assistance
Employees:20,799
Subsidiaries:6
12-month incidents
0
Known data breaches
7
Attack type number
1

Compliance Ranges Comparison

Based On Specific Ai Models Category
Merrimack Health

Merrimack Health

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA
Health Care Service Corporation

Health Care Service Corporation

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA

Benchmark & Cyber Underwriting Signals

Incidents vs Hospitals and Health Care Industry Avg (This Year)

No incidents recorded for Merrimack Health in 2026.

Incidents

Incidents vs Hospitals and Health Care Industry Avg (This Year)

No incidents recorded for Health Care Service Corporation in 2026.

Incidents

Incident History - Merrimack Health (X = Date, Y = Severity)

Merrimack Health cyber incidents detection timeline including parent company and subsidiaries.

R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Incident History - Health Care Service Corporation (X = Date, Y = Severity)

Health Care Service Corporation cyber incidents detection timeline including parent company and subsidiaries.

R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Notable Incidents

Last Cyber / HR Incidents / Global...
Merrimack Health

Merrimack Health

Incidents
No explicit notable incidents reported.
Health Care Service Corporation

Health Care Service Corporation

Incidents
🔒 Incident : Breach
HCS0692206102325
🔒 Incident : Breach
HCS1332313102325
🔒 Incident : Breach
HCS1202712111125

FAQ

Between Merrimack Health company and Health Care Service Corporation company, which one has the best AI Cybersecurity Score ?
Between Merrimack Health company and Health Care Service Corporation company, which one has experienced more cyber incidents in the past ?
Between Merrimack Health company and Health Care Service Corporation company, which one has experienced more cyber incidents this year ?
Between Merrimack Health company and Health Care Service Corporation company, which one has experienced at least one ransomware attack ?
Between Merrimack Health company and Health Care Service Corporation company, which one has experienced at least one data breach ?
Between Merrimack Health company and Health Care Service Corporation company, which one has experienced at least one targeted cyberattack ?
Between Merrimack Health company and Health Care Service Corporation company, which one has experienced at least one vulnerability ?
Between Merrimack Health company and Health Care Service Corporation company, which one holds the most compliance certifications ?
Between Merrimack Health company and Health Care Service Corporation company, which one holds the fewest compliance certifications ?
Between Merrimack Health company and Health Care Service Corporation company, which one has the most subsidiaries ?
Between Merrimack Health company and Health Care Service Corporation company, which one has the largest number of employees ?
Between Merrimack Health and Health Care Service Corporation, which company holds both SOC 2 Type 1 certifications ?
Between Merrimack Health and Health Care Service Corporation, which company holds both SOC 2 Type 2 certifications ?
Which company is ISO 27001 certified - Merrimack Health or Health Care Service Corporation ?
Which company is PCI DSS compliant - Merrimack Health or Health Care Service Corporation ?
Between Merrimack Health and Health Care Service Corporation, which company complies with HIPAA regulations for healthcare data ?
Between Merrimack Health and Health Care Service Corporation, which company complies with GDPR requirements ?

Latest Global CVEs

CVE-2026-57100
SUMMARY

Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized attacker to elevate privileges over a network.

PUBLISHED
Date2026-07-02
UPDATED
Date2026-07-02
RISK INFORMATION (Score: 9.9)
CVSS3
Base Score: 9.9
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
IMPACT SCORE
6
EXPLOITABILITY
3.1
CVE-2026-54998
SUMMARY

Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network.

PUBLISHED
Date2026-07-02
UPDATED
Date2026-07-02
RISK INFORMATION (Score: 8.8)
CVSS3
Base Score: 8.8
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
IMPACT SCORE
5.9
EXPLOITABILITY
2.8
CVE-2026-45499
SUMMARY

Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a network.

PUBLISHED
Date2026-07-02
UPDATED
Date2026-07-02
RISK INFORMATION (Score: 9.9)
CVSS3
Base Score: 9.9
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
IMPACT SCORE
6
EXPLOITABILITY
3.1
CVE-2026-41106
SUMMARY

Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.

PUBLISHED
Date2026-07-02
UPDATED
Date2026-07-02
RISK INFORMATION (Score: 9.3)
CVSS3
Base Score: 9.3
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
IMPACT SCORE
5.8
EXPLOITABILITY
2.8
CVE-2026-26145
SUMMARY

Improper access control in Azure Synapse allows an authorized attacker to elevate privileges over a network.

PUBLISHED
Date2026-07-02
UPDATED
Date2026-07-02
RISK INFORMATION (Score: 4.8)
CVSS3
Base Score: 4.8
Complexity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N
IMPACT SCORE
3.6
EXPLOITABILITY
1.2