UHET
Company Details
Linkedin ID:
ut-health-east-texas
Website:
Employees number:
2,711
Number of followers:
14,193
NAICS:
62
Industry Type:
Homepage:
uthealtheasttexas.com
IP Addresses:
36
Company ID:
UT _1548356
Scan Status:
Completed
UT Health East Texas Company CyberSecurity Posture
uthealtheasttexas.com
Representing the very best in healthcare, UT Health East Texas is comprised of 10 hospitals and more than 90 clinics across East Texas. With nearly 7,500 employees and over 1,000 licensed inpatient beds, UT Health East Texas provides healthcare services to thousands of patients annually through our hospitals, clinics, Level 1 trauma facility, air emergency fleet and EMS in a metropolitan service area of a quarter million people. With the support of Ardent Health Services and the University of Texas System, UT Health East Texas is uniquely positioned to provide patients with access to cutting-edge research and clinical therapies while training and educating the next generation of physicians and other health professionals. At UT Health East Texas, our mission is to care for people — our patients, their families and each other. We do so while educating and developing the caregivers of the future.
UT Health East Texas A.I CyberSecurity Scoring
UHET Risk Score (AI oriented)Between 700 and 749
UHET
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
UHET Global Score (TPRM)XXXX
UHET
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
UHET Company CyberSecurity News & History
Past Incidents
4
Attack Types
2
Ardent Health Services
Ransomware
Rankiteo Explanation
Attack limited on finance or reputation
Description: Cybercriminals' attack on a significant U.S. health system during Thanksgiving week most certainly wasn't accidental. Following the discovery of what it later determined to be a ransomware attack, Ardent Health Services, a 30-hospital system, decided to take its IT systems offline. There were hospital disruptions in Texas, Kansas, Oklahoma, New Jersey, New Mexico, and Idaho. An Ardent representative informed the news outlet that after detecting the ransomware, the health system had discovered an abnormality and had called in more outside cybersecurity specialists to look into it.
BSA Health System
Breach
Rankiteo Explanation
Attack threatening the organization’s existence
Description: BSA Health Systems, located in Amarillo, Texas, declared that it was made aware of a possible security breach that resulted in a network outage on Thanksgiving. News sources state that hospitals owned by Ardent in east Texas, Oklahoma, Kansas, and Idaho are impacted by the outage. Hospitals in New Mexico and New Jersey are also owned by the business. Ambulances in such states may be diverted by emergency departments, although that is still unknown.
Lovelace Health System
Ransomware
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: The ransomware assault affected Ardent Health Services, Lovelace's parent business, and its hospitals across the country. They therefore moved a large portion of their network, including user access, business services, the internet, and clinical programmes, offline. Emergency care was moved to other hospitals like Presbyterian and UNMH when Lovelace was initially informed of the attack. Lovelace's urgent care centre and emergency department are back in operation, and patients can resume their outpatient physical therapy and rehabilitation sessions.
UT Health East Texas
Breach
Rankiteo Explanation
Attack threatening the organization’s existence
Description: A possible cyber security breach has prevented a network of hospitals in East Texas from accepting ambulances to emergency departments since Thanksgiving Day. While the hospital looks into a possible security attack and attempts to get computers back online, the UT Health East Texas hospital network is working according to established downtime procedures. Although it's uncertain if that will happen, the hospital network initially stated that it anticipated computer networks to be restored in the following 24 to 36 hours.
UHET Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for UHET
Incidents vs Hospitals and Health Care Industry Average (This Year)
No incidents recorded for UT Health East Texas in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for UT Health East Texas in 2025.
Incident Types UHET vs Hospitals and Health Care Industry Avg (This Year)
No incidents recorded for UT Health East Texas in 2025.
Incident History — UHET (X = Date, Y = Severity)
UHET cyber incidents detection timeline including parent company and subsidiaries
UHET Company Subsidiaries
Representing the very best in healthcare, UT Health East Texas is comprised of 10 hospitals and more than 90 clinics across East Texas. With nearly 7,500 employees and over 1,000 licensed inpatient beds, UT Health East Texas provides healthcare services to thousands of patients annually through our hospitals, clinics, Level 1 trauma facility, air emergency fleet and EMS in a metropolitan service area of a quarter million people. With the support of Ardent Health Services and the University of Texas System, UT Health East Texas is uniquely positioned to provide patients with access to cutting-edge research and clinical therapies while training and educating the next generation of physicians and other health professionals. At UT Health East Texas, our mission is to care for people — our patients, their families and each other. We do so while educating and developing the caregivers of the future.
Loading...
UHET Similar Companies
Ramsay Health Care
Ramsay Health Care is a trusted provider of private hospital and healthcare services in Australia, Europe and the United Kingdom. Every year, millions of patients put their trust in Ramsay, confident in our ability to deliver safe, high-quality healthcare with outstanding clinical outcomes. We ope
The Netcare Group (JSE: NTC) offers a unique, comprehensive range of medical services across the healthcare spectrum, enabling us to serve the health and care needs of each individual who entrust their care to us. Our focus on implementing sophisticated digital systems will enable us to provide care
Hospital for Special Surgery
HSS is the world’s leading academic medical center focused on musculoskeletal health. At its core is Hospital for Special Surgery, nationally ranked No. 1 in orthopedics (for the 16th consecutive year), No. 3 in rheumatology by U.S. News & World Report (2025-2026), and the best pediatric orthopedic
Texas Health Resources
At Texas Health Resources, our mission is to improve the health of the people in the communities we serve. We are one of the largest faith-based, nonprofit health systems in the United States with a team of more than 28,000 employees of wholly owned/operated facilities and consolidated joint ventur
Access Healthcare provides business process outsourcing, application services, and robotic process automation tools to hospitals, health systems, providers, payers, and related service providers. We operate from 20 delivery centers across nine cities in the US, India, and the Philippines, and our 2
Medical University of South Carolina
The Medical University of South Carolina (MUSC) is a public institution of higher learning the purpose of which is to preserve and optimize human life in South Carolina and beyond. The university provides an interprofessional environment for learning and discovery through education of health care p
AdventHealth is a connected network of care that helps people feel whole – body, mind and spirit. More than 100,000 team members across a national footprint provide whole-person care to nearly nine million people annually through more than 2,000 care sites that include hospitals, physician practices
Advocate Health Care
Advocate Health Care is proud to be a part of Advocate Health, the third-largest nonprofit integrated health system in the U.S. Advocate Health is the third-largest nonprofit, integrated health system in the United States, created from the combination of Advocate Aurora Health and Atrium Health. Pr
Vancouver Coastal Health
Join a team connected by collaboration, support and most importantly, the goal of providing quality patient care. We value career growth with employer-supported training, encourage a culture where everyone’s voice is heard and strive to create a supportive team environment. To learn more, visit vch.
.png)
UHET CyberSecurity News
November 24, 2025 02:17 PM
SEC Connections: Texas A&M
News, stories, and opinions on science, technology, health, education, business, policy, campus life, and more from The University of Texas...
September 16, 2025 07:00 AM
UT Health East Texas and Ambetter Insurance face network dispute
TYLER, Texas (KETK)– Ambetter Insurance may no longer be accepted by UT Health East if an agreement is not reached between the two companies...
September 04, 2025 07:00 AM
East Texas doctor explains possible causes in student-athlete death
“Risk factors for these really unfortunate circumstances can be a multitude,” Dr. Robert French with UT Health East Texas Orthopedic and...
September 02, 2025 07:00 AM
Tyler PD no longer looking for suspect in UT Health lockdown
UPDATE: Tyler PD PIO Andy Erbaugh said the department is no longer looking for a suspect in Tuesday's lockdown at UT Health East Texas.
May 06, 2025 07:00 AM
UT Tyler Engineering Student Named National Building Technology Program Intern
Derick Phanos of Ghana, a graduate mechanical engineering student at The University of Texas at Tyler, will participate in the 2025 JUMP...
March 20, 2025 07:00 AM
Texas Legislature considers creating cyber command center to defend state from cyberattacks
The government entity would be tasked with creating a strategy to anticipate and detect cyber threats and promote cybersecurity awareness.
February 26, 2025 08:00 AM
Ardent Health Reports Fourth Quarter 2024 Results
Ardent Health Partners, Inc. (NYSE: ARDT) (“Ardent Health” or the “Company”), a leading provider of healthcare in growing mid-sized urban...
January 03, 2025 08:00 AM
Ardent Health kicks off 2025 with major expansion of urgent care clinic footprint
The purchase follows Ardent Health's acquisition of nine additional urgent care centers in its East Texas and Topeka, Kansas markets in...
December 27, 2024 08:00 AM
Top In-Demand CyberSecurity Jobs for Beginners in Tyler
Tyler, Texas is experiencing a surge in demand for entry-level cybersecurity jobs, with over 175 Cyber Defense Analyst roles available.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
UHET CyberSecurity History Information
Official Website of UT Health East Texas
The official website of UT Health East Texas is http://uthealtheasttexas.com.
UT Health East Texas’s AI-Generated Cybersecurity Score
According to Rankiteo, UT Health East Texas’s AI-generated cybersecurity score is 728, reflecting their Moderate security posture.
How many security badges does UT Health East Texas’ have ?
According to Rankiteo, UT Health East Texas currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does UT Health East Texas have SOC 2 Type 1 certification ?
According to Rankiteo, UT Health East Texas is not certified under SOC 2 Type 1.
Does UT Health East Texas have SOC 2 Type 2 certification ?
According to Rankiteo, UT Health East Texas does not hold a SOC 2 Type 2 certification.
Does UT Health East Texas comply with GDPR ?
According to Rankiteo, UT Health East Texas is not listed as GDPR compliant.
Does UT Health East Texas have PCI DSS certification ?
According to Rankiteo, UT Health East Texas does not currently maintain PCI DSS compliance.
Does UT Health East Texas comply with HIPAA ?
According to Rankiteo, UT Health East Texas is not compliant with HIPAA regulations.
Does UT Health East Texas have ISO 27001 certification ?
According to Rankiteo,UT Health East Texas is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of UT Health East Texas
UT Health East Texas operates primarily in the Hospitals and Health Care industry.
Number of Employees at UT Health East Texas
UT Health East Texas employs approximately 2,711 people worldwide.
Subsidiaries Owned by UT Health East Texas
UT Health East Texas presently has no subsidiaries across any sectors.
UT Health East Texas’s LinkedIn Followers
UT Health East Texas’s official LinkedIn profile has approximately 14,193 followers.
NAICS Classification of UT Health East Texas
UT Health East Texas is classified under the NAICS code 62, which corresponds to Health Care and Social Assistance.
UT Health East Texas’s Presence on Crunchbase
No, UT Health East Texas does not have a profile on Crunchbase.
UT Health East Texas’s Presence on LinkedIn
Yes, UT Health East Texas maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/ut-health-east-texas.
Cybersecurity Incidents Involving UT Health East Texas
As of November 27, 2025, Rankiteo reports that UT Health East Texas has experienced 4 cybersecurity incidents.
Number of Peer and Competitor Companies
UT Health East Texas has an estimated 30,007 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at UT Health East Texas ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach and Ransomware.
How does UT Health East Texas detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with outside cybersecurity specialists, and containment measures with taking it systems offline, and containment measures with moved a large portion of their network offline, and recovery measures with resumed operations at urgent care centre and emergency department..
Incident Details
Can you provide details on each incident ?
Title: Ransomware Attack on Ardent Health Services
Description: Cybercriminals' attack on a significant U.S. health system during Thanksgiving week most certainly wasn't accidental. Following the discovery of what it later determined to be a ransomware attack, Ardent Health Services, a 30-hospital system, decided to take its IT systems offline. There were hospital disruptions in Texas, Kansas, Oklahoma, New Jersey, New Mexico, and Idaho. An Ardent representative informed the news outlet that after detecting the ransomware, the health system had discovered an abnormality and had called in more outside cybersecurity specialists to look into it.
Type: Ransomware
Title: BSA Health Systems Network Outage
Description: BSA Health Systems in Amarillo, Texas, reported a possible security breach that resulted in a network outage on Thanksgiving. The outage impacted hospitals owned by Ardent in east Texas, Oklahoma, Kansas, and Idaho. Hospitals in New Mexico and New Jersey are also owned by the business, and emergency departments in these states may need to divert ambulances.
Date Detected: Thanksgiving
Type: Network Outage
Title: Ransomware Attack on Ardent Health Services
Description: The ransomware assault affected Ardent Health Services, Lovelace's parent business, and its hospitals across the country. They therefore moved a large portion of their network, including user access, business services, the internet, and clinical programmes, offline. Emergency care was moved to other hospitals like Presbyterian and UNMH when Lovelace was initially informed of the attack. Lovelace's urgent care centre and emergency department are back in operation, and patients can resume their outpatient physical therapy and rehabilitation sessions.
Type: Ransomware
Title: Cyber Security Breach at UT Health East Texas Hospital Network
Description: A possible cyber security breach has prevented a network of hospitals in East Texas from accepting ambulances to emergency departments since Thanksgiving Day. While the hospital looks into a possible security attack and attempts to get computers back online, the UT Health East Texas hospital network is working according to established downtime procedures. Although it's uncertain if that will happen, the hospital network initially stated that it anticipated computer networks to be restored in the following 24 to 36 hours.
Date Detected: 2022-11-24
Type: Cyber Security Breach
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware ARD2306224
Systems Affected: IT systems
Operational Impact: Hospital disruptions
Incident : Ransomware LOV7215224
Systems Affected: NetworkUser AccessBusiness ServicesInternetClinical Programmes
Operational Impact: Emergency care moved to other hospitalsTemporary shutdown of network services
Incident : Cyber Security Breach UTH71515224
Systems Affected: Emergency Department Systems
Downtime: ['24 to 36 hours']
Operational Impact: Unable to accept ambulances to emergency departments
Which entities were affected by each incident ?
Incident : Ransomware ARD2306224
Entity Name: Ardent Health Services
Entity Type: Health System
Industry: Healthcare
Location: TexasKansasOklahomaNew JerseyNew MexicoIdaho
Size: 30-hospital system
Incident : Network Outage BSA2396224
Entity Name: BSA Health Systems
Entity Type: Healthcare
Industry: Healthcare
Location: Amarillo, Texas
Incident : Network Outage BSA2396224
Entity Name: Ardent Hospitals
Entity Type: Healthcare
Industry: Healthcare
Location: east TexasOklahomaKansasIdahoNew MexicoNew Jersey
Incident : Ransomware LOV7215224
Entity Name: Ardent Health Services
Entity Type: Healthcare
Industry: Healthcare
Incident : Cyber Security Breach UTH71515224
Entity Name: UT Health East Texas
Entity Type: Hospital Network
Industry: Healthcare
Location: East Texas
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Ransomware ARD2306224
Third Party Assistance: Outside Cybersecurity Specialists.
Containment Measures: Taking IT systems offline
Incident : Ransomware LOV7215224
Containment Measures: Moved a large portion of their network offline
Recovery Measures: Resumed operations at urgent care centre and emergency department
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through Outside cybersecurity specialists, .
Data Breach Information
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by taking it systems offline, , moved a large portion of their network offline and .
Ransomware Information
How does the company recover data encrypted by ransomware ?
Data Recovery from Ransomware: The company recovers data encrypted by ransomware through Resumed operations at urgent care centre and emergency department, .
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Cyber Security Breach UTH71515224
Investigation Status: Ongoing
Post-Incident Analysis
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Outside Cybersecurity Specialists, .
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on Thanksgiving.
Impact of the Incidents
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was IT systems and and NetworkUser AccessBusiness ServicesInternetClinical Programmes and Emergency Department Systems.
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was outside cybersecurity specialists, .
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident were Taking IT systems offline and Moved a large portion of their network offline.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=ut-health-east-texas' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
