Comparison Overview

Rush University Medical Center

VS

UT Southwestern Medical Center

Rush University Medical Center

1620 W Harrison St, Chicago, 60612, US
Last Update: 2026-01-17
View Profile
Between 750 and 799
https://www.rush.edu

Rush University Medical Center is an academic medical center that includes a 671-bed hospital serving adults and children, the 61-bed Johnston R. Bowman Health Center and Rush University. Rush University is home to one of the first medical colleges in the Midwest and one of the nation's top-ranked nursing colleges, as well as graduate programs in allied health, health systems management and biomedical research. The medical center also offers more than 70 highly selective residency and fellowship programs in medical and surgical specialties and subspecialties. For more than 170 years, Rush has been leading the way in developing innovative and often life-saving treatments. Today, Rush is a thriving center for basic and clinical research, with physicians and scientists involved in hundreds of research projects developing and testing the effectiveness and safety of new therapies and medical devices. In addition to its mission in patient care, education and research, Rush maintains a strong commitment to the community. Rush reaches out to the Chicago community through such offerings as the Rush Community Services Initiatives Program, an umbrella for several student-led outreach programs designed to address the social and health care needs of residents in neighboring communities.

NAICS: 62
NAICS Definition: Health Care and Social Assistance
Employees: 12,161
Subsidiaries: 4
12-month incidents
0
Known data breaches
0
Attack type number
1
View Profile

UT Southwestern Medical Center

5323 Harry Hines Boulevard, Dallas, Texas, 75390, US
Last Update: 2026-01-17
Between 750 and 799
http://www.utsouthwestern.edu/

UT Southwestern is an academic medical center, world-renowned for its research, regarded among the best in the country for medical education and for clinical and scientific training, and nationally recognized for the quality of care its faculty provides to patients at UT Southwestern’s University Hospital & Clinics and affiliated institutions. The Medical Center includes three degree-granting institutions: UT Southwestern Medical School, UT Southwestern Graduate School of Biomedical Sciences, and UT Southwestern School of Health Professions. - The schools train nearly 3,700 medical, graduate, and health profession students, residents, and postdoctoral fellows each year. - Ongoing support from federal agencies, along with foundations, individuals, and corporations, provides more than $524 million per year to fund faculty research. - UT Southwestern physicians provide care in about 80 specialties to more than 117,000 hospitalized patients, more than 360,000 emergency room cases, and oversee nearly 3 million outpatient visits a year. - UT Southwestern has approximately 25,000 employees and an operating budget of $3.7 billion. - In U.S. News & World Report’s America’s Best Hospitals 2023-2024 guide, UT Southwestern is ranked the No. 1 hospital in Texas (tie) – and a top 20 hospital in the nation. Additionally, UTSW is nationally ranked in nine specialty-care areas: Cancer; Cardiology, Heart & Vascular Surgery; Diabetes & Endocrinology; Ear, Nose & Throat; Gastroenterology & GI Surgery; Geriatrics; Neurology & Neurosurgery; Obstetrics & Gynecology; Pulmonology & Lung Surgery; Rehabilitation; and Urology.

NAICS: 62
NAICS Definition: Health Care and Social Assistance
Employees: 17,558
Subsidiaries: 13
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/rush-university-medical-center.jpeg
Rush University Medical Center
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/utsw.jpeg
UT Southwestern Medical Center
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Rush University Medical Center
100%
Compliance Rate
0/4 Standards Verified
UT Southwestern Medical Center
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Hospitals and Health Care Industry Average (This Year)

No incidents recorded for Rush University Medical Center in 2026.

Incidents vs Hospitals and Health Care Industry Average (This Year)

No incidents recorded for UT Southwestern Medical Center in 2026.

Incident History — Rush University Medical Center (X = Date, Y = Severity)

Rush University Medical Center cyber incidents detection timeline including parent company and subsidiaries

Incident History — UT Southwestern Medical Center (X = Date, Y = Severity)

UT Southwestern Medical Center cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/rush-university-medical-center.jpeg
Rush University Medical Center
Incidents

Date Detected: 01/2019
Type:Data Leak
Attack Vector: Unauthorized Access/Disclosure
Blog: Blog
https://images.rankiteo.com/companyimages/utsw.jpeg
UT Southwestern Medical Center
Incidents

No Incident

FAQ

UT Southwestern Medical Center company demonstrates a stronger AI Cybersecurity Score compared to Rush University Medical Center company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Rush University Medical Center company has historically faced a number of disclosed cyber incidents, whereas UT Southwestern Medical Center company has not reported any.

In the current year, UT Southwestern Medical Center company and Rush University Medical Center company have not reported any cyber incidents.

Neither UT Southwestern Medical Center company nor Rush University Medical Center company has reported experiencing a ransomware attack publicly.

Neither UT Southwestern Medical Center company nor Rush University Medical Center company has reported experiencing a data breach publicly.

Neither UT Southwestern Medical Center company nor Rush University Medical Center company has reported experiencing targeted cyberattacks publicly.

Neither Rush University Medical Center company nor UT Southwestern Medical Center company has reported experiencing or disclosing vulnerabilities publicly.

Neither Rush University Medical Center nor UT Southwestern Medical Center holds any compliance certifications.

Neither company holds any compliance certifications.

UT Southwestern Medical Center company has more subsidiaries worldwide compared to Rush University Medical Center company.

UT Southwestern Medical Center company employs more people globally than Rush University Medical Center company, reflecting its scale as a Hospitals and Health Care.

Neither Rush University Medical Center nor UT Southwestern Medical Center holds SOC 2 Type 1 certification.

Neither Rush University Medical Center nor UT Southwestern Medical Center holds SOC 2 Type 2 certification.

Neither Rush University Medical Center nor UT Southwestern Medical Center holds ISO 27001 certification.

Neither Rush University Medical Center nor UT Southwestern Medical Center holds PCI DSS certification.

Neither Rush University Medical Center nor UT Southwestern Medical Center holds HIPAA certification.

Neither Rush University Medical Center nor UT Southwestern Medical Center holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Improper validation of specified type of input in M365 Copilot allows an unauthorized attacker to disclose information over a network.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
References
Description

Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privileges over a network.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References
Description

Azure Entra ID Elevation of Privilege Vulnerability

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
References
Description

Moonraker is a Python web server providing API access to Klipper 3D printing firmware. In versions 0.9.3 and below, instances configured with the "ldap" component enabled are vulnerable to LDAP search filter injection techniques via the login endpoint. The 401 error response message can be used to determine whether or not a search was successful, allowing for brute force methods to discover LDAP entries on the server such as user IDs and user attributes. This issue has been fixed in version 0.10.0.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss4
Base: 2.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Runtipi is a Docker-based, personal homeserver orchestrator that facilitates multiple services on a single server. Versions 3.7.0 and above allow an authenticated user to execute arbitrary system commands on the host server by injecting shell metacharacters into backup filenames. The BackupManager fails to sanitize the filenames of uploaded backups. The system persists user-uploaded files directly to the host filesystem using the raw originalname provided in the request. This allows an attacker to stage a file containing shell metacharacters (e.g., $(id).tar.gz) at a predictable path, which is later referenced during the restore process. The successful storage of the file is what allows the subsequent restore command to reference and execute it. This issue has been fixed in version 4.7.0.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 8.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
References