Michigan Medicine A.I CyberSecurity Scoring
Michigan Medicine
Company Information
Website:https://www.michiganmedicine.org/
Employees number:14,370
Number of followers:109,286
NAICS:62
Industry Type:Hospitals and Health Care
Homepage:michiganmedicine.org
Michigan Medicine Risk Score (AI oriented)
Between 650 and 699
Michigan MedicineHospitals and Health Care
Updated:
01/05/2026
01/05/2026
676/1000
Weak
B
Michigan Medicine Global Score (TPRM)
xxxx
Michigan MedicineHospitals and Health Care
Score locked

Michigan MedicineWeak
Current Score
676B (WEAK)
01000
5 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
681
JUNE 2026
680
MAY 2026
677
APRIL 2026
713
MARCH 2026
713
FEBRUARY 2026
711
JANUARY 2026
710
DECEMBER 2025
709
NOVEMBER 2025
707
OCTOBER 2025
706
SEPTEMBER 2025
705
AUGUST 2025
703
OCTOBER 2023
661
Breach
18 Oct 2023 • Michigan Medicine
Reid Health, UMass Memorial Health, Michigan Medicine and Epic Systems Corp.: 'Sham' network accessed 300,000 medical records, including Michigan's
Massive Medical Records Breach Exposes 300,000 Patients, Including Michigan Medicine Patients
592
CRITICAL-69
OUTEPIMICUMA1777660615
Massive Medical Records Breach Exposes 300,000 Patients, Including Michigan Medicine Patients
A sophisticated cyber scheme has compromised nearly 300,000 medical records, including those of 551 Michigan Medicine patients, after a network of fraudulent entities posed as legitimate healthcare providers to access sensitive data. The breach, which occurred between October 18, 2023, and November 12, 2025, was uncovered when Epic Systems Corp. the vendor behind Michigan Medicine’s electronic health records detected unusual activity from third-party companies exploiting a health information exchange.
The exposed data included demographic details (names, addresses, dates of birth), clinical information (diagnoses, medications, test results), and health insurance records, though Social Security numbers were not accessed. The breach stemmed from a coordinated effort by entities like Mammoth, RavillaMed, and GuardDog Telehealth, which allegedly used fake websites, shell companies, and fraudulent National Provider Identification (NPI) numbers to deceive healthcare systems into releasing records.
Epic filed a lawsuit on January 13, 2026, in the U.S. District Court for the Central District of California, accusing Health Gorilla Inc. a health information network of enabling the scheme. The complaint alleges that Health Gorilla’s network monetized patient data without consent, including selling it to lawyers for class-action recruitment, and inserted false entries into medical records to mask their activities. The lawsuit compares the operation to a Hydra, with new fraudulent entities emerging as others are exposed.
Michigan Medicine, along with Trinity Health, Reid Health, UMass Memorial Health, and OCHIN, joined the legal action. An internal review conducted March 12–25, 2026, confirmed unauthorized access to patient records, though the health system assessed the risk of identity or medical theft as low due to the absence of financial or Social Security data. Michigan Medicine has since reported the incident to regulators, is monitoring the lawsuit, and has notified affected patients, advising them to review insurance statements for suspicious activity.
Health Gorilla denies the allegations, calling Epic’s lawsuit "misleading and unfounded" and stating it suspended connections with the implicated entities upon discovery. CEO Bob Watson criticized Epic’s response as irresponsible, vowing to defend against the claims.
The breach highlights vulnerabilities in health information exchanges, with Epic reporting that additional records from other U.S. providers, including the Department of Veterans Affairs, may have been compromised. The full scope of the incident remains under investigation.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
JANUARY 2023
653
Cyber Attack
01 Jan 2023 • Michigan Medicine
Michigan Medicine
Cyber Attack on Michigan Medicine
636
LOW-17
MIC8259223
Michigan Medicine was targeted in a cyber attack after that experienced intermittent problems with its public websites as a result on a third-party vendor they used to host some of their sites.
They worked with the third-party to mitigate it and expect to have sites fully functional as soon as possible.
Public websites hosted by a third-party provider are the only websites that have been targeted.
All patient information is secure and not included on any of the compromised sites.
Michigan Medicine took steps immediately to investigate the matter and implemented additional safeguards to reduce risk to our patients.
INCIDENT DETAILS -
TYPE
IMPACT
REFERENCES
AUGUST 2022
693
Breach
15 Aug 2022 • Michigan Medicine
Michigan Medicine
Michigan Medicine Data Breach
642
CRITICAL-51
MIC514072725
On November 10, 2022, the Vermont Office of the Attorney General reported a data breach involving Michigan Medicine that occurred from August 15 to August 23, 2022, due to a phishing attack targeting its employees. The breach potentially exposed identifiable patient information, including names, medical record numbers, addresses, dates of birth, and health insurance information; however, the specific number of individuals affected is unknown.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
MARCH 2022
743
Breach
01 Mar 2022 • Michigan Medicine
Michigan Medicine
Michigan Medicine Data Security Incident
684
CRITICAL-59
MIC173012522
The patient information of Michigan Medicine was leaked in a data security incident after an employee email account was compromised.
A newly-hired employee accessed patients' electronic medical records of about 2,920 patients without any business need.
The compromised information included demographic and clinical information such as diagnosis, treatment, and test results.
The employee's excess was immediately cut off and further investigation revealed that no information was misused and the employee checked the records out of curiosity.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
AUGUST 2019
783
Data Leak
01 Aug 2019 • Michigan Medicine
Michigan Medicine
Phishing Email Campaign at Michigan Medicine
716
HIGH-67
MIC4393423
Michigan Medicine notified approximately 5,500 patients about a phishing email campaign that have exposed some of their health information.
During the campaign, emails containing a malicious link were sent to over 3,200 Michigan Medicine employees.
This email was opened by three employees, giving the attacker access to their email accounts.
The compromised information includes names, medical record numbers, addresses, dates of birth, diagnostic and treatment information, and health insurance information.
As soon as Michigan Medicine learned that the email accounts were compromised, they were disabled so no further access could take place until the passwords were changed.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for Michigan Medicine ??
What was Michigan Medicine's A.I Rankiteo Cyber Score in June 2026 ??
What was Michigan Medicine's A.I Rankiteo Cyber Score in May 2026 ??
What was Michigan Medicine's A.I Rankiteo Cyber Score in April 2026 ??
What was Michigan Medicine's A.I Rankiteo Cyber Score in March 2026 ??
What was Michigan Medicine's A.I Rankiteo Cyber Score in February 2026 ??
What was Michigan Medicine's A.I Rankiteo Cyber Score in January 2026 ??
What was Michigan Medicine's A.I Rankiteo Cyber Score in December 2025 ??
What was Michigan Medicine's A.I Rankiteo Cyber Score in November 2025 ??
What was Michigan Medicine's A.I Rankiteo Cyber Score in October 2025 ??
What was Michigan Medicine's A.I Rankiteo Cyber Score in September 2025 ??
What was Michigan Medicine's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on Michigan Medicine's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with Michigan Medicine ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view Michigan Medicine's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?