Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
UC San Diego Health

UC San Diego Health Vendor Cyber Rating & Cyber Score

ucsd.edu

UC San Diego Health and Health Sciences has been caring for the community for almost 60 years. In 1966, we established our first medical center. Two years later, in 1968, UC San Diego School of Medicine opened for business. Today, UC San Diego Health is the only academic health system in the San Diego region and is widely recognized as one of the premier health care systems in the United States. Its clinical facilities include: • Hillcrest Medical Center • East Campus Medical Center • Jacobs Medical Center – La Jolla • Moores Cancer Center (The only National Cancer Institute-designated Comprehensive Cancer Centers in the region.) • Shiley Eye Center • Sulpizio Cardiovascular Center (San Diego’s first comprehensive cardiovascular


USDH A.I CyberSecurity Scoring

USDH
Company Information
Website:https://employment.ucsd.edu/uc-san-diego-health
Employees number:10,692
Number of followers:87,972
NAICS:62
Industry Type:Hospitals and Health Care
Homepage:ucsd.edu
USDH Risk Score (AI oriented)
Between 600 and 649
logo
USDHHospitals and Health Care
Updated:
01/04/2026
604/1000
Poor
Caa
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
USDH Global Score (TPRM)
xxxx
logo
USDHHospitals and Health Care
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

USDH
USDHPoor
Current Score
604Caa (POOR)
01000
7 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
614Before Incident
JUNE 2026
613Before Incident
MAY 2026
609Before Incident
APRIL 2026
607Before Incident
MARCH 2026
604Before Incident
FEBRUARY 2026
600Before Incident
JANUARY 2026
597Before Incident
DECEMBER 2025
608Before Incident
NOVEMBER 2025
606Before Incident
OCTOBER 2025
602Before Incident
SEPTEMBER 2025
599Before Incident
AUGUST 2025
595Before Incident
JANUARY 2024
560Before Incident
Breach
09 Jan 2024USDH
UC San Diego Health Hillcrest - Hillcrest Medical Center

UC San Diego Health Data Breach

510After Incident
HIGH-50
UCS108072625
The California Office of the Attorney General reported that UC San Diego Health experienced a data breach due to a phishing attack, which occurred between January 9 and January 22, 2024. The breach involved unauthorized access to employee email accounts, potentially exposing personal information such as names and Social Security numbers, affecting an unspecified number of individuals. The breach was reported on March 8, 2024.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
NamesSocial Security numbersEmployee email accounts
DATA BREACH
NamesSocial Security numbersSensitivity Of Data: High
OCTOBER 2023
663Before Incident
Ransomware
01 Oct 2023USDH
UC San Diego Health

UC San Diego Health Ransomware Attack

545After Incident
CRITICAL-118
UCS1014070724
UC San Diego Health experienced a ransomware attack threatening critical healthcare operations. As the medical industry increases reliance on technology, such attacks can have dire consequences on patient care and outcomes. The attack's costliness, with an average of $11 million according to IBM, poses risks to smaller healthcare systems' existence, potentially leading to their permanent closure. Patients in remote areas would be most affected due to the scarcity of nearby medical facilities. In response, federal funding has been allocated to develop better preventative and mitigative measures, focusing on cybersecurity in healthcare.
INCIDENT DETAILS -
TYPE
Ransomware
MOTIVATION
Financial Gain
IMPACT
Financial Loss: Average of $11 millionSystems Affected: Critical healthcare operationsOperational Impact: Threat to patient care and outcomes
SEPTEMBER 2022
681Before Incident
Breach
13 Sep 2022USDH
UC San Diego Health

UC San Diego Health Data Breach via Vendor Solv Health

631After Incident
CRITICAL-50
UCS1016090725
UC San Diego Health suffered a data breach via its third-party vendor, Solv Health, between September 13 and December 22, 2022. The incident exposed sensitive personal information of individuals who used Solv Health’s scheduling websites. Compromised data may include names, dates of birth, email addresses, and insurance details, though the exact number of affected individuals remains undisclosed. The breach stems from a vulnerability or security lapse within Solv Health’s systems, indirectly impacting UC San Diego Health’s patients. While no financial or medical records appear to have been stolen, the exposure of personally identifiable information (PII) raises concerns over potential identity theft, phishing, or fraudulent activities targeting the victims. The breach underscores risks associated with third-party vendor dependencies in healthcare data management, where even non-direct attacks can erode trust and necessitate regulatory disclosures under laws like HIPAA or CCPA. UC San Diego Health likely faced reputational damage and operational disruptions in addressing the fallout, including notifications, credit monitoring offers, and system audits to prevent future incidents.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
namesdates of birthemail addressesinsurance typesscheduling websitesIdentity Theft Risk: Potential
DATA BREACH
personal informationNumber Of Records Exposed: UnknownSensitivity Of Data: Moderate (PII)Data Exfiltration: Likelynamesdates of birthemail addresses
JULY 2021
699Before Incident
Breach
01 Jul 2021USDH
UC San Diego Health

UC San Diego Health Data Breach

649After Incident
HIGH-50
UCS22335223
UC San Diego Health suffered from a data breach that exposed number of patients, employees and others connected to UC San Diego Health potentially. It was found that the breach occurred via unauthorized access to some employee email accounts, but it did not affect the continuity of care for their patients. A UCSD Health spokesperson said Tuesday that ransomware, software often used to extort money from an organization, was not involved. The compromised information includes full names, addresses, dates of birth, email addresses, fax numbers, claims information including dates and costs of care received, laboratory results, medical diagnoses and conditions, medical record numbers, prescription information, treatment information, Social Security numbers, government identification numbers, financial account numbers, student identification numbers, usernames and passwords. They notified people, and the letters each person receives precisely reflect the information that would have been impacted for that particular person.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
full namesaddressesdates of birthemail addressesfax numbersclaims information including dates and costs of care receivedlaboratory resultsmedical diagnoses and conditionsmedical record numbersprescription informationtreatment informationSocial Security numbersgovernment identification numbersfinancial account numbersstudent identification numbersusernames and passwords
DATA BREACH
full namesaddressesdates of birthemail addressesfax numbersclaims information including dates and costs of care receivedlaboratory resultsmedical diagnoses and conditionsmedical record numbersprescription informationtreatment informationSocial Security numbersgovernment identification numbersfinancial account numbersstudent identification numbersusernames and passwordsSensitivity Of Data: High
DECEMBER 2020
738Before Incident
Breach
02 Dec 2020USDH
UC San Diego Health

UC San Diego Health Data Breach

687After Incident
HIGH-51
UCS913080425
The California Office of the Attorney General reported that UC San Diego Health experienced a data breach involving unauthorized access to employee email accounts. The incident occurred between December 2, 2020, and April 8, 2021, affecting personal information including Social Security numbers and medical details. The breach was reported on September 9, 2021.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Social Security numbersmedical details
DATA BREACH
Social Security numbersmedical detailsSensitivity Of Data: High
NOVEMBER 2017
744Before Incident
Breach
20 Nov 2017USDH
UC San Diego Health

Data Breach at UC San Diego Health

694After Incident
CRITICAL-50
UCS827072625
The California Office of the Attorney General reported a data breach at UC San Diego Health that occurred between November 20, 2017, and December 9, 2017, with notification issued on June 14, 2019. An unauthorized third party accessed a medical transcription platform, potentially compromising patient data such as names, dates of birth, and clinical information, but did not access Social Security numbers or financial account information. The number of individuals affected is currently unknown.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
NamesDates of BirthClinical InformationMedical Transcription Platform
DATA BREACH
NamesDates of BirthClinical InformationSensitivity Of Data: HighNamesDates of Birth
AUGUST 2016
787Before Incident
Breach
03 Aug 2016USDH
UC San Diego School of Medicine

UC San Diego School of Medicine Data Breach

731After Incident
HIGH-56
UCS457072625
The California Office of the Attorney General reported that UC San Diego School of Medicine experienced a data breach on August 3, 2016. The breach involved personal information including names and social security numbers of trainees. The incident was reported on September 22, 2016.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
namessocial security numbers
DATA BREACH
namessocial security numbersSensitivity Of Data: High

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for USDH ?
?
What was USDH's A.I Rankiteo Cyber Score in June 2026 ?
?
What was USDH's A.I Rankiteo Cyber Score in May 2026 ?
?
What was USDH's A.I Rankiteo Cyber Score in April 2026 ?
?
What was USDH's A.I Rankiteo Cyber Score in March 2026 ?
?
What was USDH's A.I Rankiteo Cyber Score in February 2026 ?
?
What was USDH's A.I Rankiteo Cyber Score in January 2026 ?
?
What was USDH's A.I Rankiteo Cyber Score in December 2025 ?
?
What was USDH's A.I Rankiteo Cyber Score in November 2025 ?
?
What was USDH's A.I Rankiteo Cyber Score in October 2025 ?
?
What was USDH's A.I Rankiteo Cyber Score in September 2025 ?
?
What was USDH's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on USDH's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with USDH ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view USDH's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?