UUSCAP
Company Details
Linkedin ID:
uscap
Website:
Employees number:
30
Number of followers:
2,391
NAICS:
81391
Industry Type:
Homepage:
uscap.org
IP Addresses:
0
Company ID:
USC_2553492
Scan Status:
In-progress
USCAP - United States and Canadian Academy of Pathology Company CyberSecurity Posture
uscap.org
The United States and Canadian Academy of Pathology (USCAP) is dedicated to creating a better pathologist. It accomplishes this through its mission to provide the ultimate in continuing medical education and translational research to improve practices and patient outcomes globally. USCAP offers live courses featuring Interactive Microscopy as well as an eLearning library of pathology education videos and the Annual Meeting, the largest gathering of pathologists in the world.
USCAP - United States and Canadian Academy of Pathology A.I CyberSecurity Scoring
UUSCAP Risk Score (AI oriented)Between 700 and 749
UUSCAP
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
UUSCAP Global Score (TPRM)XXXX
UUSCAP
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
UUSCAP Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
United States and Canadian Academy of Pathology
Breach
Rankiteo Explanation
Attack limited on finance or reputation
Description: The Maine Office of the Attorney General reported a data breach at the United States and Canadian Academy of Pathology. The breach, which occurred on March 29, 2022, and was discovered on April 26, 2022, involved unauthorized access to financial account information. This incident potentially affected 1,246 individuals, with 2 residents from Maine notified on August 24, 2022. Identity theft protection services were offered to the affected individuals.
UUSCAP Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for UUSCAP
Incidents vs Industry Associations Industry Average (This Year)
No incidents recorded for USCAP - United States and Canadian Academy of Pathology in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for USCAP - United States and Canadian Academy of Pathology in 2025.
Incident Types UUSCAP vs Industry Associations Industry Avg (This Year)
No incidents recorded for USCAP - United States and Canadian Academy of Pathology in 2025.
Incident History — UUSCAP (X = Date, Y = Severity)
UUSCAP cyber incidents detection timeline including parent company and subsidiaries
UUSCAP Company Subsidiaries
The United States and Canadian Academy of Pathology (USCAP) is dedicated to creating a better pathologist. It accomplishes this through its mission to provide the ultimate in continuing medical education and translational research to improve practices and patient outcomes globally. USCAP offers live courses featuring Interactive Microscopy as well as an eLearning library of pathology education videos and the Annual Meeting, the largest gathering of pathologists in the world.
Loading...
UUSCAP Similar Companies
Canadian Manufacturers & Exporters
Canadian Manufacturers & Exporters (CME) is Canada’s largest trade and industry association, and the voice of manufacturing and global business in Canada. CME directly represents more than 10,000 leading companies nationwide. More than 85 per cent of CME’s members are small and medium-sized ent
Napa Valley Vintners
It began as most things do in Napa Valley: over a table replete with good food and good wines. In 1943, seven Napa Valley vintners began meeting to exchange ideas and work as a group to overcome industry obstacles and elevate the status of Napa Valley wines. In 1944, the vintners decided to formaliz
EPHMRA
A professional Association for International Healthcare Research and Insights professionals encompassing an inspiring and empowering community. Over 60 years of experience. Supporting you at every stage of your career. Encouraging excellence by driving high standards throughout the International
ISACA
ISACA® (www.isaca.org) represents the global workforce advancing trust in technology. For more than 55 years, ISACA has empowered its global community of 185,000+ members with the knowledge, credentials, training and network they need to thrive in fields like information security, governance, assura
CII ASCON
CII ASCON plays a major role in monitoring the industry performance and highlighting key sector specific policy issues which need to be taken up with the Government and policy makers at various levels. The origin of ASCON goes back to 1974 when the affiliated associations of CII were first brought t
ACRP - Association of Clinical Research Professionals
With more than 17,000 members, the Association of Clinical Research Professionals (ACRP) is the only nonprofit organization solely dedicated to representing, supporting, and advocating for clinical research professionals. ACRP supports individuals and life science organizations globally by providi
.png)
UUSCAP CyberSecurity News
August 21, 2025 07:33 AM
Dr. Lal PathLabs Implements AI to Detect Lymph Node Metastasis in Cancer Cases
The AI tool, QiAI Lymph Node Dx, was validated in collaboration with Qritive and showcased at the United States and Canadian Academy of Pathology (USCAP)...
March 24, 2025 07:00 AM
Philips and Ibex expand partnership to enhance AI-enabled pathology workflows for better patient care
Amsterdam, The Netherlands – Royal Philips (NYSE: PHG, AEX: PHIA), a global leader in health technology, today announced the expansion of...
May 27, 2024 07:00 AM
Digital microscopy: Bridging the gap in remote healthcare - ET Edge Insights
India is a populous country with a 1.3 billion spread across urban and rural areas. According to a United Nations report,...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
UUSCAP CyberSecurity History Information
Official Website of USCAP - United States and Canadian Academy of Pathology
The official website of USCAP - United States and Canadian Academy of Pathology is http://uscap.org.
USCAP - United States and Canadian Academy of Pathology’s AI-Generated Cybersecurity Score
According to Rankiteo, USCAP - United States and Canadian Academy of Pathology’s AI-generated cybersecurity score is 722, reflecting their Moderate security posture.
How many security badges does USCAP - United States and Canadian Academy of Pathology’ have ?
According to Rankiteo, USCAP - United States and Canadian Academy of Pathology currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does USCAP - United States and Canadian Academy of Pathology have SOC 2 Type 1 certification ?
According to Rankiteo, USCAP - United States and Canadian Academy of Pathology is not certified under SOC 2 Type 1.
Does USCAP - United States and Canadian Academy of Pathology have SOC 2 Type 2 certification ?
According to Rankiteo, USCAP - United States and Canadian Academy of Pathology does not hold a SOC 2 Type 2 certification.
Does USCAP - United States and Canadian Academy of Pathology comply with GDPR ?
According to Rankiteo, USCAP - United States and Canadian Academy of Pathology is not listed as GDPR compliant.
Does USCAP - United States and Canadian Academy of Pathology have PCI DSS certification ?
According to Rankiteo, USCAP - United States and Canadian Academy of Pathology does not currently maintain PCI DSS compliance.
Does USCAP - United States and Canadian Academy of Pathology comply with HIPAA ?
According to Rankiteo, USCAP - United States and Canadian Academy of Pathology is not compliant with HIPAA regulations.
Does USCAP - United States and Canadian Academy of Pathology have ISO 27001 certification ?
According to Rankiteo,USCAP - United States and Canadian Academy of Pathology is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of USCAP - United States and Canadian Academy of Pathology
USCAP - United States and Canadian Academy of Pathology operates primarily in the Industry Associations industry.
Number of Employees at USCAP - United States and Canadian Academy of Pathology
USCAP - United States and Canadian Academy of Pathology employs approximately 30 people worldwide.
Subsidiaries Owned by USCAP - United States and Canadian Academy of Pathology
USCAP - United States and Canadian Academy of Pathology presently has no subsidiaries across any sectors.
USCAP - United States and Canadian Academy of Pathology’s LinkedIn Followers
USCAP - United States and Canadian Academy of Pathology’s official LinkedIn profile has approximately 2,391 followers.
NAICS Classification of USCAP - United States and Canadian Academy of Pathology
USCAP - United States and Canadian Academy of Pathology is classified under the NAICS code 81391, which corresponds to Business Associations.
USCAP - United States and Canadian Academy of Pathology’s Presence on Crunchbase
No, USCAP - United States and Canadian Academy of Pathology does not have a profile on Crunchbase.
USCAP - United States and Canadian Academy of Pathology’s Presence on LinkedIn
Yes, USCAP - United States and Canadian Academy of Pathology maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/uscap.
Cybersecurity Incidents Involving USCAP - United States and Canadian Academy of Pathology
As of November 28, 2025, Rankiteo reports that USCAP - United States and Canadian Academy of Pathology has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
USCAP - United States and Canadian Academy of Pathology has an estimated 203 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at USCAP - United States and Canadian Academy of Pathology ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
How does USCAP - United States and Canadian Academy of Pathology detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an communication strategy with identity theft protection services offered to affected individuals..
Incident Details
Can you provide details on each incident ?
Title: Data Breach at United States and Canadian Academy of Pathology
Description: Unauthorized access to financial account information affecting 1,246 individuals.
Date Detected: 2022-04-26
Date Publicly Disclosed: 2022-08-24
Type: Data Breach
Attack Vector: Unauthorized Access
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach USC721072725
Data Compromised: Financial Account Information
Identity Theft Risk: High
Payment Information Risk: High
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Financial Account Information.
Which entities were affected by each incident ?
Incident : Data Breach USC721072725
Entity Name: United States and Canadian Academy of Pathology
Entity Type: Organization
Industry: Healthcare
Customers Affected: 1246
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach USC721072725
Communication Strategy: Identity theft protection services offered to affected individuals
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach USC721072725
Type of Data Compromised: Financial Account Information
Number of Records Exposed: 1246
Sensitivity of Data: High
References
Where can I find more information about each incident ?
Incident : Data Breach USC721072725
Source: Maine Office of the Attorney General
Date Accessed: 2022-08-24
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Office of the Attorney GeneralDate Accessed: 2022-08-24.
Investigation Status
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Identity theft protection services offered to affected individuals.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2022-04-26.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2022-08-24.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident was Financial Account Information.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was Financial Account Information.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 130.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Maine Office of the Attorney General.
.png)
Latest Global CVEs (Not Company-Specific)
Description
ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.
Risk Information
cvss4
Base: 6.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description
Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.
Description
Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=uscap' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
