Comparison Overview

Q: Between Optum company and Emory Healthcare company, which one has the best AI Cybersecurity Score ?

Optum company demonstrates a stronger AI Cybersecurity Score compared to Emory Healthcare company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between Optum company and Emory Healthcare company, which one has experienced more cyber incidents in the past ?

Optum company has faced a higher number of disclosed cyber incidents historically compared to Emory Healthcare company.

Q: Between Optum company and Emory Healthcare company, which one has experienced more cyber incidents this year ?

In the current year, Optum company has reported more cyber incidents than Emory Healthcare company.

Q: Between Optum company and Emory Healthcare company, which one has experienced at least one ransomware attack ?

Optum company has confirmed experiencing a ransomware attack, while Emory Healthcare company has not reported such incidents publicly.

Q: Between Optum company and Emory Healthcare company, which one has experienced at least one data breach ?

Both Emory Healthcare company and Optum company have disclosed experiencing at least one data breach.

Q: Between Optum company and Emory Healthcare company, which one has experienced at least one targeted cyberattack ?

Both Emory Healthcare company and Optum company have reported experiencing targeted cyberattacks.

Q: Between Optum company and Emory Healthcare company, which one has experienced at least one vulnerability ?

Neither Optum company nor Emory Healthcare company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between Optum company and Emory Healthcare company, which one holds the most compliance certifications ?

Neither Optum nor Emory Healthcare holds any compliance certifications.

Q: Between Optum company and Emory Healthcare company, which one has the most subsidiaries ?

Optum company has more subsidiaries worldwide compared to Emory Healthcare company.

Optum

11000 Optum Circle, Eden Prairie , MN, US, 55344

Last Update: 2025-12-09

View Profile

Between 750 and 799

https://www.optum.com/en/

We’re evolving health care so everyone can have the opportunity to live their healthiest life. It’s why we put your unique needs at the heart of everything we do, making it easy and affordable to manage health and well-being. We are delivering the right care how and when it’s needed; providing support to make smarter and healthier choices; and making prescription services easier, while helping you save money along the way. It’s everything health care should be. Together, for better health. Optum is part of UnitedHealth Group (NYSE: UNH).

NAICS: 62

NAICS Definition: Health Care and Social Assistance

Employees: 100,751

Subsidiaries: 6

12-month incidents

0

Known data breaches

7

Attack type number

3

View Profile

Emory Healthcare

Emory University Hospital, 1364 Clifton Road, Atlanta, GA, US, 30322

Last Update: 2025-12-09

Between 700 and 749

http://www.emoryhealthcare.org

Emory Healthcare is the most comprehensive health care system in Georgia. We offer 11 hospitals, the Emory Clinic, more than 250 provider locations, and more than 2,800 physicians specializing in 70 different medical subspecialties. Meaning we can provide treatments and services that may not be available at local community hospitals. That's the Emory Difference.

NAICS: 62

NAICS Definition: Health Care and Social Assistance

Employees: 16,255

Subsidiaries: 0

12-month incidents

1

Known data breaches

2

Attack type number

2

Optum

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Emory Healthcare

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Hospitals and Health Care Industry Average (This Year)

No incidents recorded for Optum in 2025.

Incidents vs Hospitals and Health Care Industry Average (This Year)

Emory Healthcare has 19.05% more incidents than the average of same-industry companies with at least one recorded incident.

Incident History — Optum (X = Date, Y = Severity)

Optum cyber incidents detection timeline including parent company and subsidiaries

Incident History — Emory Healthcare (X = Date, Y = Severity)

Emory Healthcare cyber incidents detection timeline including parent company and subsidiaries

Optum

Incidents

Date Detected: 6/2025

Type:Ransomware

Motivation: Financial Gain

Blog: Blog

Date Detected: 2/2025

Type:Ransomware

Blog: Blog

Date Detected: 12/2024

Type:Cyber Attack

Attack Vector: Physical Violence

Motivation: Protest against healthcare insurance claim denials, Criticism of healthcare companies' focus on profits over patient care

Blog: Blog

Emory Healthcare

Incidents

Date Detected: 5/2025

Type:Cyber Attack

Blog: Blog

Date Detected: 12/2022

Type:Breach

Attack Vector: Third-party Service Provider

Blog: Blog

Date Detected: 9/1990

Type:Breach

Attack Vector: Loss of backup data discs

Blog: Blog

Optum company demonstrates a stronger AI Cybersecurity Score compared to Emory Healthcare company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Optum company has faced a higher number of disclosed cyber incidents historically compared to Emory Healthcare company.

In the current year, Optum company has reported more cyber incidents than Emory Healthcare company.

Optum company has confirmed experiencing a ransomware attack, while Emory Healthcare company has not reported such incidents publicly.

Both Emory Healthcare company and Optum company have disclosed experiencing at least one data breach.

Both Emory Healthcare company and Optum company have reported experiencing targeted cyberattacks.

Neither Optum company nor Emory Healthcare company has reported experiencing or disclosing vulnerabilities publicly.

Neither Optum nor Emory Healthcare holds any compliance certifications.

Neither company holds any compliance certifications.

Optum company has more subsidiaries worldwide compared to Emory Healthcare company.

Optum company employs more people globally than Emory Healthcare company, reflecting its scale as a Hospitals and Health Care.

Neither Optum nor Emory Healthcare holds SOC 2 Type 1 certification.

Neither Optum nor Emory Healthcare holds SOC 2 Type 2 certification.

Neither Optum nor Emory Healthcare holds ISO 27001 certification.

Neither Optum nor Emory Healthcare holds PCI DSS certification.

Neither Optum nor Emory Healthcare holds HIPAA certification.

Neither Optum nor Emory Healthcare holds GDPR certification.

Description

Hitachi Vantara Pentaho Data Integration and Analytics Community Dashboard Framework prior to versions 10.2.0.4, including 9.3.0.x and 8.3.x display the full server stack trace when encountering an error within the GetCdfResource servlet.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss3

Base: 5.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

References

https://support.pentaho.com/hc/en-us/articles/41833799577741--Resolved-Hitachi-Vantara-Pentaho-Business-Analytics-Server-Generation-of-Error-Message-Containing-Sensitive-Information-Versions-before-10-2-0-4-Impacted-CVE-2025-9122

Description

Pentaho Data Integration and Analytics Community Dashboard Editor plugin versions before 10.2.0.4, including 9.3.0.x and 8.3.x, deserialize untrusted JSON data without constraining the parser to approved classes and methods.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss3

Base: 8.8

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

https://support.pentaho.com/hc/en-us/articles/41832536185613--Resolved-Hitachi-Vantara-Pentaho-Business-Analytics-Server-Deserialization-of-Untrusted-Data-Versions-before-10-2-0-4-Impacted-CVE-2025-9121

Description

A security flaw has been discovered in CTCMS Content Management System up to 2.1.2. The impacted element is an unknown function in the library /ctcms/libs/Ct_Config.php of the component Backend System Configuration Module. The manipulation of the argument Cj_Add/Cj_Edit results in code injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss2

Base: 5.8

Severity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base: 4.7

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 5.1

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

A vulnerability was identified in CTCMS Content Management System up to 2.1.2. The affected element is the function Save of the file /ctcms/libs/Ct_App.php of the component Backend App Configuration Module. The manipulation of the argument CT_App_Paytype leads to code injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss2

Base: 5.8

Severity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base: 4.7

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base: 5.1

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Weblate is a web based localization tool. In versions prior to 5.15, it was possible to accept an invitation opened by a different user. Version 5.15. contains a patch. As a workaround, avoid leaving one's Weblate sessions with an invitation opened unattended.

Published

Date

2025-12-15

Updated

Date

2025-12-15

Risk Information

cvss4

Base: 1.0

Severity: HIGH

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Optum

VS

Emory Healthcare

Optum

Emory Healthcare

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Hospitals and Health Care Industry Average (This Year)

Incidents vs Hospitals and Health Care Industry Average (This Year)

Incident History — Optum (X = Date, Y = Severity)

Incident History — Emory Healthcare (X = Date, Y = Severity)

Notable Incidents

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-9122

Risk Information

CVE-2025-9121

Risk Information

CVE-2025-14730

Risk Information

CVE-2025-14729

Risk Information

CVE-2025-64725

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Optum

VS

Emory Healthcare

Optum

Emory Healthcare

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Hospitals and Health Care Industry Average (This Year)

Incidents vs Hospitals and Health Care Industry Average (This Year)

Incident History — Optum (X = Date, Y = Severity)

Incident History — Emory Healthcare (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Ransomware UNI721060625

🔒 Incident : Ransomware UNI002033125

🔒 Incident : Cyber Attack UNI000121424

🔒 Incident : Cyber Attack EMO729051525

🔒 Incident : Breach EMO118251222

🔒 Incident : Breach EMO728072825

FAQ

Between Optum company and Emory Healthcare company, which one has the best AI Cybersecurity Score ?

Between Optum company and Emory Healthcare company, which one has experienced more cyber incidents in the past ?

Between Optum company and Emory Healthcare company, which one has experienced more cyber incidents this year ?

Between Optum company and Emory Healthcare company, which one has experienced at least one ransomware attack ?

Between Optum company and Emory Healthcare company, which one has experienced at least one data breach ?

Between Optum company and Emory Healthcare company, which one has experienced at least one targeted cyberattack ?

Between Optum company and Emory Healthcare company, which one has experienced at least one vulnerability ?

Between Optum company and Emory Healthcare company, which one holds the most compliance certifications ?

Between Optum company and Emory Healthcare company, which one holds the fewest compliance certifications ?

Between Optum company and Emory Healthcare company, which one has the most subsidiaries ?

Between Optum company and Emory Healthcare company, which one has the largest number of employees ?

Between Optum and Emory Healthcare, which company holds both SOC 2 Type 1 certifications ?

Between Optum and Emory Healthcare, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Optum or Emory Healthcare ?

Which company is PCI DSS compliant — Optum or Emory Healthcare ?

Between Optum and Emory Healthcare, which company complies with HIPAA regulations for healthcare data ?

Between Optum and Emory Healthcare, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-9122

Risk Information

CVE-2025-9121

Risk Information

CVE-2025-14730

Risk Information

CVE-2025-14729

Risk Information

CVE-2025-64725

Risk Information