Comparison Overview

St. Gregory Recovery Center

VS

Ermha Ltd

St. Gregory Recovery Center

601 2nd St, Bayard, Iowa, 50029, US
Last Update: 2026-01-22
View Profile
Between 750 and 799
https://stgregoryctr.com/

St. Gregory Recovery Center is a drug and alcohol treatment center for adults in Bayard, Iowa. At St. Gregory, we understand that recovery is a deeply personal experience. That's why we offer individualized care and a compassionate team to support you on your path. Start the journey today for yourself, your client, or a loved one at https://stgregoryctr.com/.

NAICS: 621
NAICS Definition:
Employees: 45
Subsidiaries: 1
12-month incidents
0
Known data breaches
1
Attack type number
1
View Profile

Ermha Ltd

Level 1, 45 Assembly Drive, Dandenong South, VIC, 3175, AU
Last Update: 2026-01-22
Between 750 and 799
http://www.ermha365.org

ermha 365 is a lifeline for people who are challenged with complex mental health and disability issues, giving them the voice and choice to thrive as part of the community. At ermha 365 the people we work with are often considered to be at the “tip of the mental health and mental disability iceberg”. As a result of their disability, they have some of the most complex needs and challenging behaviours, and are therefore the most in need of our support. We offer mental health and disability support services in Victoria and the Northern Territory, including: • NDIS packages and support (24/7 services, outreach, Supported Independent Living (SIL), Targeted care packages (TCPs), specialist behaviour support • Mental Health Recovery Services (PARCS, EIPSR, and NPSS) • Coordination of supports (NDIS, TAC and MACNI) • Housing pathways • Volunteering and community connections

NAICS: 621
NAICS Definition:
Employees: 214
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/st-gregory-centers-inc.jpeg
St. Gregory Recovery Center
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/ermha-ltd.jpeg
Ermha Ltd
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
St. Gregory Recovery Center
100%
Compliance Rate
0/4 Standards Verified
Ermha Ltd
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Mental Health Care Industry Average (This Year)

No incidents recorded for St. Gregory Recovery Center in 2026.

Incidents vs Mental Health Care Industry Average (This Year)

No incidents recorded for Ermha Ltd in 2026.

Incident History — St. Gregory Recovery Center (X = Date, Y = Severity)

St. Gregory Recovery Center cyber incidents detection timeline including parent company and subsidiaries

Incident History — Ermha Ltd (X = Date, Y = Severity)

Ermha Ltd cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/st-gregory-centers-inc.jpeg
St. Gregory Recovery Center
Incidents

Date Detected: 5/2020
Type:Breach
Attack Vector: Unauthorized Access to Email Accounts
Blog: Blog
https://images.rankiteo.com/companyimages/ermha-ltd.jpeg
Ermha Ltd
Incidents

No Incident

FAQ

Ermha Ltd company demonstrates a stronger AI Cybersecurity Score compared to St. Gregory Recovery Center company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

St. Gregory Recovery Center company has historically faced a number of disclosed cyber incidents, whereas Ermha Ltd company has not reported any.

In the current year, Ermha Ltd company and St. Gregory Recovery Center company have not reported any cyber incidents.

Neither Ermha Ltd company nor St. Gregory Recovery Center company has reported experiencing a ransomware attack publicly.

St. Gregory Recovery Center company has disclosed at least one data breach, while the other Ermha Ltd company has not reported such incidents publicly.

Neither Ermha Ltd company nor St. Gregory Recovery Center company has reported experiencing targeted cyberattacks publicly.

Neither St. Gregory Recovery Center company nor Ermha Ltd company has reported experiencing or disclosing vulnerabilities publicly.

Neither St. Gregory Recovery Center nor Ermha Ltd holds any compliance certifications.

Neither company holds any compliance certifications.

St. Gregory Recovery Center company has more subsidiaries worldwide compared to Ermha Ltd company.

Ermha Ltd company employs more people globally than St. Gregory Recovery Center company, reflecting its scale as a Mental Health Care.

Neither St. Gregory Recovery Center nor Ermha Ltd holds SOC 2 Type 1 certification.

Neither St. Gregory Recovery Center nor Ermha Ltd holds SOC 2 Type 2 certification.

Neither St. Gregory Recovery Center nor Ermha Ltd holds ISO 27001 certification.

Neither St. Gregory Recovery Center nor Ermha Ltd holds PCI DSS certification.

Neither St. Gregory Recovery Center nor Ermha Ltd holds HIPAA certification.

Neither St. Gregory Recovery Center nor Ermha Ltd holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Improper validation of specified type of input in M365 Copilot allows an unauthorized attacker to disclose information over a network.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
References
Description

Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privileges over a network.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References
Description

Azure Entra ID Elevation of Privilege Vulnerability

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
References
Description

Moonraker is a Python web server providing API access to Klipper 3D printing firmware. In versions 0.9.3 and below, instances configured with the "ldap" component enabled are vulnerable to LDAP search filter injection techniques via the login endpoint. The 401 error response message can be used to determine whether or not a search was successful, allowing for brute force methods to discover LDAP entries on the server such as user IDs and user attributes. This issue has been fixed in version 0.10.0.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss4
Base: 2.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Runtipi is a Docker-based, personal homeserver orchestrator that facilitates multiple services on a single server. Versions 3.7.0 and above allow an authenticated user to execute arbitrary system commands on the host server by injecting shell metacharacters into backup filenames. The BackupManager fails to sanitize the filenames of uploaded backups. The system persists user-uploaded files directly to the host filesystem using the raw originalname provided in the request. This allows an attacker to stage a file containing shell metacharacters (e.g., $(id).tar.gz) at a predictable path, which is later referenced during the restore process. The successful storage of the file is what allows the subsequent restore command to reference and execute it. This issue has been fixed in version 4.7.0.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 8.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
References