Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Michigan Medicine

Michigan Medicine Vendor Cyber Rating & Cyber Score

michiganmedicine.org

Michigan Medicine, based in Ann Arbor, Michigan, is part of one of the world’s leading universities. Michigan Medicine is a premier, highly ranked academic medical center and award-winning health care system with state-of-the-art facilities. Our vision is to create the future of health care through scientific discovery, innovations in education, and the most effective and compassionate care. We want to be the leader in health care, health care reform, and biomedical innovation. Michigan Medicine includes the U-M Hospitals and Health Centers; the U-M Medical School and its Faculty Group Practice; one of the nation's largest biomedical research communities; and education programs that train thousands of future health professionals


Michigan Medicine A.I CyberSecurity Scoring

Michigan Medicine
Company Information
Website:https://www.michiganmedicine.org/
Employees number:14,370
Number of followers:109,286
NAICS:62
Industry Type:Hospitals and Health Care
Homepage:michiganmedicine.org
Michigan Medicine Risk Score (AI oriented)
Between 650 and 699
logo
Michigan MedicineHospitals and Health Care
Updated:
01/05/2026
676/1000
Weak
B
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
Michigan Medicine Global Score (TPRM)
xxxx
logo
Michigan MedicineHospitals and Health Care
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

Michigan Medicine
Michigan MedicineWeak
Current Score
676B (WEAK)
01000
5 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
681Before Incident
JUNE 2026
680Before Incident
MAY 2026
677Before Incident
APRIL 2026
713Before Incident
MARCH 2026
713Before Incident
FEBRUARY 2026
711Before Incident
JANUARY 2026
710Before Incident
DECEMBER 2025
709Before Incident
NOVEMBER 2025
707Before Incident
OCTOBER 2025
706Before Incident
SEPTEMBER 2025
705Before Incident
AUGUST 2025
703Before Incident
OCTOBER 2023
661Before Incident
Breach
18 Oct 2023Michigan Medicine
Reid Health, UMass Memorial Health, Michigan Medicine and Epic Systems Corp.: 'Sham' network accessed 300,000 medical records, including Michigan's

Massive Medical Records Breach Exposes 300,000 Patients, Including Michigan Medicine Patients

592After Incident
CRITICAL-69
OUTEPIMICUMA1777660615
Massive Medical Records Breach Exposes 300,000 Patients, Including Michigan Medicine Patients A sophisticated cyber scheme has compromised nearly 300,000 medical records, including those of 551 Michigan Medicine patients, after a network of fraudulent entities posed as legitimate healthcare providers to access sensitive data. The breach, which occurred between October 18, 2023, and November 12, 2025, was uncovered when Epic Systems Corp. the vendor behind Michigan Medicine’s electronic health records detected unusual activity from third-party companies exploiting a health information exchange. The exposed data included demographic details (names, addresses, dates of birth), clinical information (diagnoses, medications, test results), and health insurance records, though Social Security numbers were not accessed. The breach stemmed from a coordinated effort by entities like Mammoth, RavillaMed, and GuardDog Telehealth, which allegedly used fake websites, shell companies, and fraudulent National Provider Identification (NPI) numbers to deceive healthcare systems into releasing records. Epic filed a lawsuit on January 13, 2026, in the U.S. District Court for the Central District of California, accusing Health Gorilla Inc. a health information network of enabling the scheme. The complaint alleges that Health Gorilla’s network monetized patient data without consent, including selling it to lawyers for class-action recruitment, and inserted false entries into medical records to mask their activities. The lawsuit compares the operation to a Hydra, with new fraudulent entities emerging as others are exposed. Michigan Medicine, along with Trinity Health, Reid Health, UMass Memorial Health, and OCHIN, joined the legal action. An internal review conducted March 12–25, 2026, confirmed unauthorized access to patient records, though the health system assessed the risk of identity or medical theft as low due to the absence of financial or Social Security data. Michigan Medicine has since reported the incident to regulators, is monitoring the lawsuit, and has notified affected patients, advising them to review insurance statements for suspicious activity. Health Gorilla denies the allegations, calling Epic’s lawsuit "misleading and unfounded" and stating it suspended connections with the implicated entities upon discovery. CEO Bob Watson criticized Epic’s response as irresponsible, vowing to defend against the claims. The breach highlights vulnerabilities in health information exchanges, with Epic reporting that additional records from other U.S. providers, including the Department of Veterans Affairs, may have been compromised. The full scope of the incident remains under investigation.
INCIDENT DETAILS -
TYPE
Data Breach
MOTIVATION
Financial gain (monetization of patient data, potential sale to lawyers for class-action recruitment)
IMPACT
Data Compromised: 300,000 medical recordsMichigan Medicine’s electronic health records (Epic Systems)Health Gorilla’s health information networkOperational Impact: Unauthorized access to patient records, potential legal and regulatory consequencesBrand Reputation Impact: High (public lawsuit, patient notifications, regulatory scrutiny)Legal Liabilities: Lawsuit filed by Epic Systems and affected healthcare providersIdentity Theft Risk: Low (Social Security numbers not accessed)
DATA BREACH
Demographic details (names, addresses, dates of birth)Clinical information (diagnoses, medications, test results)Health insurance recordsNumber Of Records Exposed: 300,000Sensitivity Of Data: High (medical and personal health information)Data Exfiltration: Yes (potential sale to lawyers for class-action recruitment)Personally Identifiable Information: Yes (names, addresses, dates of birth, health information)
JANUARY 2023
653Before Incident
Cyber Attack
01 Jan 2023Michigan Medicine
Michigan Medicine

Cyber Attack on Michigan Medicine

636After Incident
LOW-17
MIC8259223
Michigan Medicine was targeted in a cyber attack after that experienced intermittent problems with its public websites as a result on a third-party vendor they used to host some of their sites. They worked with the third-party to mitigate it and expect to have sites fully functional as soon as possible. Public websites hosted by a third-party provider are the only websites that have been targeted. All patient information is secure and not included on any of the compromised sites. Michigan Medicine took steps immediately to investigate the matter and implemented additional safeguards to reduce risk to our patients.
INCIDENT DETAILS -
TYPE
Cyber Attack
IMPACT
Public websites hosted by a third-party providerOperational Impact: Intermittent problems with public websites
AUGUST 2022
693Before Incident
Breach
15 Aug 2022Michigan Medicine
Michigan Medicine

Michigan Medicine Data Breach

642After Incident
CRITICAL-51
MIC514072725
On November 10, 2022, the Vermont Office of the Attorney General reported a data breach involving Michigan Medicine that occurred from August 15 to August 23, 2022, due to a phishing attack targeting its employees. The breach potentially exposed identifiable patient information, including names, medical record numbers, addresses, dates of birth, and health insurance information; however, the specific number of individuals affected is unknown.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
namesmedical record numbersaddressesdates of birthhealth insurance information
DATA BREACH
namesmedical record numbersaddressesdates of birthhealth insurance informationSensitivity Of Data: High
MARCH 2022
743Before Incident
Breach
01 Mar 2022Michigan Medicine
Michigan Medicine

Michigan Medicine Data Security Incident

684After Incident
CRITICAL-59
MIC173012522
The patient information of Michigan Medicine was leaked in a data security incident after an employee email account was compromised. A newly-hired employee accessed patients' electronic medical records of about 2,920 patients without any business need. The compromised information included demographic and clinical information such as diagnosis, treatment, and test results. The employee's excess was immediately cut off and further investigation revealed that no information was misused and the employee checked the records out of curiosity.
INCIDENT DETAILS -
TYPE
Data Breach
MOTIVATION
Curiosity
IMPACT
Demographic InformationClinical Information
DATA BREACH
Demographic InformationClinical InformationSensitivity Of Data: HighDemographic Information
AUGUST 2019
783Before Incident
Data Leak
01 Aug 2019Michigan Medicine
Michigan Medicine

Phishing Email Campaign at Michigan Medicine

716After Incident
HIGH-67
MIC4393423
Michigan Medicine notified approximately 5,500 patients about a phishing email campaign that have exposed some of their health information. During the campaign, emails containing a malicious link were sent to over 3,200 Michigan Medicine employees. This email was opened by three employees, giving the attacker access to their email accounts. The compromised information includes names, medical record numbers, addresses, dates of birth, diagnostic and treatment information, and health insurance information. As soon as Michigan Medicine learned that the email accounts were compromised, they were disabled so no further access could take place until the passwords were changed.
INCIDENT DETAILS -
TYPE
Phishing
IMPACT
NamesMedical record numbersAddressesDates of birthDiagnostic and treatment informationHealth insurance information
DATA BREACH
NamesMedical record numbersAddressesDates of birthDiagnostic and treatment informationHealth insurance informationSensitivity Of Data: High

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for Michigan Medicine ?
?
What was Michigan Medicine's A.I Rankiteo Cyber Score in June 2026 ?
?
What was Michigan Medicine's A.I Rankiteo Cyber Score in May 2026 ?
?
What was Michigan Medicine's A.I Rankiteo Cyber Score in April 2026 ?
?
What was Michigan Medicine's A.I Rankiteo Cyber Score in March 2026 ?
?
What was Michigan Medicine's A.I Rankiteo Cyber Score in February 2026 ?
?
What was Michigan Medicine's A.I Rankiteo Cyber Score in January 2026 ?
?
What was Michigan Medicine's A.I Rankiteo Cyber Score in December 2025 ?
?
What was Michigan Medicine's A.I Rankiteo Cyber Score in November 2025 ?
?
What was Michigan Medicine's A.I Rankiteo Cyber Score in October 2025 ?
?
What was Michigan Medicine's A.I Rankiteo Cyber Score in September 2025 ?
?
What was Michigan Medicine's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on Michigan Medicine's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with Michigan Medicine ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view Michigan Medicine's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?