Henry Schein
Company Details
Linkedin ID:
henry-schein
Website:
Employees number:
10,321
Number of followers:
226,724
NAICS:
3391
Industry Type:
Homepage:
henryschein.com
IP Addresses:
0
Company ID:
HEN_2448430
Scan Status:
In-progress
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
Henry Schein Vendor Cyber Rating & Cyber Score
henryschein.comHenry Schein, Inc. (Nasdaq: HSIC) is a solutions company for health care professionals powered by a network of people and technology. With more than 25,000 Team Schein Members worldwide, the Company's network of trusted advisors provides more than 1 million customers globally with more than 300 valued solutions that help improve operational success and clinical outcomes. Our Business, Clinical, Technology, and Supply Chain solutions help office-based dental and medical practitioners work more efficiently so they can provide quality care more effectively. These solutions also support dental laboratories, government and institutional health care clinics, as well as other alternate care sites. Henry Schein operates through a centralized and automated distribution network, with a selection of more than 300,000 branded products and Henry Schein corporate brand products in our distribution centers. A FORTUNE 500 Company and a member of the S&P 500® index, Henry Schein is headquartered in Melville, N.Y., and has operations or affiliates in 34 countries and territories. The Company's sales reached $12.7 billion in 2024, and have grown at a compound annual rate of approximately 11.2 percent since Henry Schein became a public company in 1995.
Henry Schein A.I CyberSecurity Scoring
Henry Schein Risk Score (AI oriented)Between 700 and 749
Henry Schein
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Henry Schein Global Score (TPRM)XXXX
Henry Schein
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Henry Schein Company CyberSecurity News & History
Past Incidents
2
Attack Types
1
Henry Schein, Inc.
Breach
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: On December 6, 2023, the California Office of the Attorney General disclosed a data breach affecting Henry Schein, Inc., initially announced on October 15, 2023. The incident involved the unauthorized exposure of employees' personal information, though the exact number of impacted individuals and the breach methodology remain undisclosed. The compromised data may include sensitive employee details, such as names, addresses, Social Security numbers, or financial records, posing risks of identity theft, fraud, or phishing attacks. While the company has not confirmed the attack vector (e.g., phishing, system vulnerability, or insider threat), the breach underscores vulnerabilities in safeguarding internal workforce data. The lack of transparency regarding the scope and cause further complicates risk assessment for affected employees. Regulatory scrutiny and potential legal repercussions may follow, given the sensitivity of the exposed information and compliance obligations under data protection laws like CCPA (California Consumer Privacy Act).
Henry Schein, Inc.
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Maine Office of the Attorney General reported a data breach involving Henry Schein, Inc. on December 6, 2023. The breach occurred on September 27, 2023, and was discovered on October 14, 2023, following an external system breach involving hacking, affecting approximately 29,112 individuals. Identity theft protection services were offered for 24 months through Experian's IdentityWorks.
Henry Schein Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Henry Schein
Incidents vs Medical Equipment Manufacturing Industry Average (This Year)
No incidents recorded for Henry Schein in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Henry Schein in 2026.
Incident Types Henry Schein vs Medical Equipment Manufacturing Industry Avg (This Year)
No incidents recorded for Henry Schein in 2026.
Incident History — Henry Schein (X = Date, Y = Severity)
Henry Schein cyber incidents detection timeline including parent company and subsidiaries
Henry Schein Company Subsidiaries
Henry Schein, Inc. (Nasdaq: HSIC) is a solutions company for health care professionals powered by a network of people and technology. With more than 25,000 Team Schein Members worldwide, the Company's network of trusted advisors provides more than 1 million customers globally with more than 300 valued solutions that help improve operational success and clinical outcomes. Our Business, Clinical, Technology, and Supply Chain solutions help office-based dental and medical practitioners work more efficiently so they can provide quality care more effectively. These solutions also support dental laboratories, government and institutional health care clinics, as well as other alternate care sites. Henry Schein operates through a centralized and automated distribution network, with a selection of more than 300,000 branded products and Henry Schein corporate brand products in our distribution centers. A FORTUNE 500 Company and a member of the S&P 500® index, Henry Schein is headquartered in Melville, N.Y., and has operations or affiliates in 34 countries and territories. The Company's sales reached $12.7 billion in 2024, and have grown at a compound annual rate of approximately 11.2 percent since Henry Schein became a public company in 1995.
Loading...
Henry Schein Similar Companies
Danaher Corporation
Danaher is a leading global life sciences and diagnostics innovator, committed to accelerating the power of science and technology to improve human health. We partner with customers across the globe to help them solve their most complex challenges, architecting solutions that bring the power of scie
Baxter International Inc.
For nearly a century, we have delivered on our commitment to saving and sustaining the lives of patients, working alongside clinicians and providers around the world. We believe every person — regardless of who they are or where they are from — deserves a chance to live a healthy life, free from ill
Olympus Corporation
Olympus is passionate about creating customer-driven solutions for the medical industry. For more than 100 years, Olympus has focused on making people’s lives healthier, safer and more fulfilling by helping detect, prevent, and treat disease, furthering scientific research, and ensuring public safet
Beckman Coulter Diagnostics
A global leader in advanced diagnostics, Beckman Coulter has challenged convention to elevate the diagnostic laboratory’s role in improving patient health for more than 80 years. Our mission is to Relentlessly Reimagine Healthcare, One Diagnosis at a Time – and we do this by applying the power of sc
Zimmer Biomet
Zimmer Biomet is a global medical technology leader with a comprehensive portfolio designed to maximize mobility and improve health. We advance our mission to alleviate pain and improve the quality of life for patients around the world with our innovative products and suite of integrated digital and
Smith+Nephew
Smith+Nephew is a global medical technology company. We design and manufacture technology that takes the limits off living. We support healthcare professionals to return their patients to health and mobility, helping them to perform at their fullest potential. From our first employee and founder, T
Alcon
Alcon helps people see brilliantly. As the global leader in eye care with a heritage spanning over 75 years, we offer the broadest portfolio of products to enhance sight and improve people’s lives. Our Surgical and Vision Care products touch the lives of more than 260 million people in over 140 coun
Stryker
Stryker is a global leader in medical technologies and, together with our customers, we are driven to make healthcare better. We offer innovative products and services in MedSurg, Neurotechnology and Orthopaedics that help improve patient and healthcare outcomes. Alongside its customers around the w
Medline
Medline is the largest provider of medical-surgical products and supply chain solutions serving all points of care. Through its unique offering of world-class products, supply chain resilience and clinical practice expertise, Medline delivers improved clinical, financial and operational outcomes. He
.png)
Henry Schein CyberSecurity News
January 21, 2026 08:00 AM
Henry Schein (HSIC): Company Profile, Stock Price, News, Rankings
Henry Schein is a global health care services distributor of dental and medical supplies, business and supply-chain solutions,...
November 04, 2025 08:00 AM
Decoding Henry Schein Inc (HSIC): A Strategic SWOT Insight
Henry Schein Inc's robust distribution network and value-added services underscore its market leadership.Technological advancements and...
October 03, 2025 07:00 AM
Henry Schein’s TriMed confirms ransomware attack
A Russia-linked cyber gang has claimed that it has cracked open the systems of healthcare giant Henry Schein's TriMed, leaking sensitive...
October 28, 2024 07:00 AM
News - Harry Schein says 2023 cyber attack impacted over 166,000 individuals
U.S. healthcare solutions provider Henry Schein said the data breach it suffered last year compromised the sensitive personal information of...
October 25, 2024 07:00 AM
Henry Schein Confirms 166,000 Individuals Affected By October 2023 Ransomware Attack
Henry Schein, a Melville, NY-based provider of medical and dental supplies and Fortune 500 firm, has continued to investigate a 2023...
October 25, 2024 07:00 AM
In Other News: CVE Turns 25, Henry Schein Data Breach, Reward for Shahid Hemmat Hackers
CVE Program 25th anniversary, Henry Schein says 160000 are impacted by data breach, US offering rewards for Shahid Hemmat hackers.
October 25, 2024 07:00 AM
Healthcare giant Henry Schein reveals data breach following major ransomware attack
A year after the incidents, Henry Schein reports more details to authorities.
October 24, 2024 07:00 AM
Henry Schein discloses data breach a year after ransomware attack
Henry Schein has finally disclosed a data breach following at least two back-to-back cyberattacks in 2023 by the BlackCat Ransomware gang,...
October 24, 2024 07:00 AM
Federman & Sherwood Investigates Henry Schein, Inc. for Data Breach
Federman & Sherwood Investigates Henry Schein, Inc. for Data Breach.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Henry Schein CyberSecurity History Information
Official Website of Henry Schein
The official website of Henry Schein is http://www.henryschein.com.
Henry Schein’s AI-Generated Cybersecurity Score
According to Rankiteo, Henry Schein’s AI-generated cybersecurity score is 707, reflecting their Moderate security posture.
How many security badges does Henry Schein’ have ?
According to Rankiteo, Henry Schein currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Henry Schein been affected by any supply chain cyber incidents ?
According to Rankiteo, Henry Schein has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Henry Schein have SOC 2 Type 1 certification ?
According to Rankiteo, Henry Schein is not certified under SOC 2 Type 1.
Does Henry Schein have SOC 2 Type 2 certification ?
According to Rankiteo, Henry Schein does not hold a SOC 2 Type 2 certification.
Does Henry Schein comply with GDPR ?
According to Rankiteo, Henry Schein is not listed as GDPR compliant.
Does Henry Schein have PCI DSS certification ?
According to Rankiteo, Henry Schein does not currently maintain PCI DSS compliance.
Does Henry Schein comply with HIPAA ?
According to Rankiteo, Henry Schein is not compliant with HIPAA regulations.
Does Henry Schein have ISO 27001 certification ?
According to Rankiteo,Henry Schein is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Henry Schein
Henry Schein operates primarily in the Medical Equipment Manufacturing industry.
Number of Employees at Henry Schein
Henry Schein employs approximately 10,321 people worldwide.
Subsidiaries Owned by Henry Schein
Henry Schein presently has no subsidiaries across any sectors.
Henry Schein’s LinkedIn Followers
Henry Schein’s official LinkedIn profile has approximately 226,724 followers.
NAICS Classification of Henry Schein
Henry Schein is classified under the NAICS code 3391, which corresponds to Medical Equipment and Supplies Manufacturing.
Henry Schein’s Presence on Crunchbase
Yes, Henry Schein has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/henry-schein-inc.
Henry Schein’s Presence on LinkedIn
Yes, Henry Schein maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/henry-schein.
Cybersecurity Incidents Involving Henry Schein
As of April 04, 2026, Rankiteo reports that Henry Schein has experienced 2 cybersecurity incidents.
Number of Peer and Competitor Companies
Henry Schein has an estimated 5,750 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Henry Schein ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
How does Henry Schein detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with experian's identityworks..
Incident Details
Can you provide details on each incident ?
Title: Data Breach at Henry Schein, Inc.
Description: The Maine Office of the Attorney General reported a data breach involving Henry Schein, Inc. on December 6, 2023. The breach occurred on September 27, 2023, and was discovered on October 14, 2023, following an external system breach involving hacking, affecting approximately 29,112 individuals. Identity theft protection services were offered for 24 months through Experian's IdentityWorks.
Date Detected: 2023-10-14
Date Publicly Disclosed: 2023-12-06
Type: Data Breach
Attack Vector: Hacking
Title: Henry Schein, Inc. Data Breach (2023)
Description: On December 6, 2023, the California Office of the Attorney General reported a data breach involving Henry Schein, Inc., which was publicly announced on October 15, 2023. The breach potentially affected employees' personal information, although the specific number of individuals affected and the method of breach are currently unknown.
Date Publicly Disclosed: 2023-10-15
Type: Data Breach
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach HEN222072625
Identity Theft Risk: High
Incident : Data Breach HEN034090625
Identity Theft Risk: True
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personal Information (Employees) and .
Which entities were affected by each incident ?
Incident : Data Breach HEN222072625
Entity Name: Henry Schein, Inc.
Entity Type: Company
Industry: Healthcare
Customers Affected: 29112
Incident : Data Breach HEN034090625
Entity Name: Henry Schein, Inc.
Entity Type: Corporation
Industry: Healthcare / Dental & Medical Supplies
Location: Melville, New York, USA
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach HEN222072625
Third Party Assistance: Experian's IdentityWorks
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through Experian's IdentityWorks.
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach HEN222072625
Number of Records Exposed: 29112
Incident : Data Breach HEN034090625
Type of Data Compromised: Personal information (employees)
Sensitivity of Data: High (Personal Information)
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Data Breach HEN034090625
Regulatory Notifications: California Office of the Attorney General
References
Where can I find more information about each incident ?
Incident : Data Breach HEN222072625
Source: Maine Office of the Attorney General
Date Accessed: 2023-12-06
Incident : Data Breach HEN034090625
Source: California Office of the Attorney General
Date Accessed: 2023-12-06
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Office of the Attorney GeneralDate Accessed: 2023-12-06, and Source: California Office of the Attorney GeneralDate Accessed: 2023-12-06.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Data Breach HEN034090625
Investigation Status: Ongoing (details unknown)
Post-Incident Analysis
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Experian's IdentityWorks.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2023-10-14.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2023-10-15.
Impact of the Incidents
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was Experian's IdentityWorks.
Data Breach Information
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 303.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Maine Office of the Attorney General and California Office of the Attorney General.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing (details unknown).
.png)
Latest Global CVEs (Not Company-Specific)
Description
nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, two peer-facing consensus request handlers assume that the history index is always available and call blockchain.history_store.history_index().unwrap() directly. That assumption is false by construction. HistoryStoreProxy::history_index() explicitly returns None for the valid HistoryStoreProxy::WithoutIndex state. when a full node is syncing or otherwise running without the history index, a remote peer can send RequestTransactionsProof or RequestTransactionReceiptsByAddress and trigger an Option::unwrap() panic on the request path. This issue has been patched in version 1.3.0.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Description
PraisonAI is a multi-agent teams system. Prior to version 1.5.95, FileTools.download_file() in praisonaiagents validates the destination path but performs no validation on the url parameter, passing it directly to httpx.stream() with follow_redirects=True. An attacker who controls the URL can reach any host accessible from the server including cloud metadata services and internal network services. This issue has been patched in version 1.5.95.
Risk Information
cvss3
Base: 8.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, OAuthManager.validate_token() returns True for any token not found in its internal store, which is empty by default. Any HTTP request to the MCP server with an arbitrary Bearer token is treated as authenticated, granting full access to all registered tools and agent capabilities. This issue has been patched in version 4.5.97.
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, the PraisonAI Gateway server accepts WebSocket connections at /ws and serves agent topology at /info with no authentication. Any network client can connect, enumerate registered agents, and send arbitrary messages to agents and their tool sets. This issue has been patched in version 4.5.97.
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.90, MCPToolIndex.search_tools() compiles a caller-supplied string directly as a Python regular expression with no validation, sanitization, or timeout. A crafted regex causes catastrophic backtracking in the re engine, blocking the Python thread for hundreds of seconds and causing a complete service outage. This issue has been patched in version 4.5.90.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=henry-schein' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
