UMMS
Company Details
Linkedin ID:
ummedicalsystem
Website:
Employees number:
11,445
Number of followers:
99,023
NAICS:
62
Industry Type:
Homepage:
umms.org
IP Addresses:
0
Company ID:
UNI_2137751
Scan Status:
In-progress
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
University of Maryland Medical System Vendor Cyber Rating & Cyber Score
umms.orgThe University of Maryland Medical System (UMMS) was created in 1984 when the state-owned University Hospital became a private, nonprofit organization. It has evolved into a multi-hospital system with academic, community and specialty service missions reaching every part of the state and beyond. UMMS is a national and regional referral center for trauma, cancer care, neurocare, cardiac care, women's and children's health and physical rehabilitation. It also has one of the world's largest kidney transplant programs, as well as scores of other programs that improve the physical and mental health of thousands of people daily. The hospitals and health systems that comprise UMMS are: University of Maryland Medical Center University of Maryland Medical Center Midtown Campus UM Rehabilitation and Orthopaedic Institute UM Baltimore Washington Medical Center UM Capital Region Health UM Charles Regional Medical Center UM St. Joseph Medical Center UM Upper Chesapeake Health UM Shore Regional Health Mt. Washington Pediatric Hospital UM Community Medical Group
University of Maryland Medical System A.I CyberSecurity Scoring
UMMS Risk Score (AI oriented)Between 750 and 799
UMMS
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
UMMS Global Score (TPRM)XXXX
UMMS
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
UMMS Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
UMMS Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for UMMS
Incidents vs Hospitals and Health Care Industry Average (This Year)
No incidents recorded for University of Maryland Medical System in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for University of Maryland Medical System in 2026.
Incident Types UMMS vs Hospitals and Health Care Industry Avg (This Year)
No incidents recorded for University of Maryland Medical System in 2026.
Incident History — UMMS (X = Date, Y = Severity)
UMMS cyber incidents detection timeline including parent company and subsidiaries
UMMS Company Subsidiaries
The University of Maryland Medical System (UMMS) was created in 1984 when the state-owned University Hospital became a private, nonprofit organization. It has evolved into a multi-hospital system with academic, community and specialty service missions reaching every part of the state and beyond. UMMS is a national and regional referral center for trauma, cancer care, neurocare, cardiac care, women's and children's health and physical rehabilitation. It also has one of the world's largest kidney transplant programs, as well as scores of other programs that improve the physical and mental health of thousands of people daily. The hospitals and health systems that comprise UMMS are: University of Maryland Medical Center University of Maryland Medical Center Midtown Campus UM Rehabilitation and Orthopaedic Institute UM Baltimore Washington Medical Center UM Capital Region Health UM Charles Regional Medical Center UM St. Joseph Medical Center UM Upper Chesapeake Health UM Shore Regional Health Mt. Washington Pediatric Hospital UM Community Medical Group
Loading...
UMMS Similar Companies
NorthShore University HealthSystem, Swedish Hospital, Northwest Community Healthcare and Edward-Elmhurst Health are now united under one name: Endeavor Health. Together, we’re driven by our mission to help everyone in our communities be their best and our commitment to setting a new standard for he
Health Service Executive
Our purpose is to provide safe, high quality health and personal social services to the population of Ireland. Our vision is a healthier Ireland with a high quality health service valued by all. Our Workforce The health service is the largest employer in the state with over 110,000 whole time equ
Community Health Systems is one of the nation’s leading healthcare providers. Developing and operating healthcare delivery systems across 14 states, CHS is committed to helping people get well and live healthier. CHS affiliates operate 70 acute-care hospitals and more than 1,000 other sites of care,
Boston Children's Hospital
Boston Children's Hospital is a 404-bed comprehensive center for pediatric health care. As one of the largest pediatric medical centers in the United States, Boston Children's offers a complete range of health care services for children from birth through 21 years of age. (Our services can begin int
At UCHealth, we do things differently. We strive to promote individual and community health and leave no question unanswered along the way. We’re driven to improve and optimize health care. Our network of nationally-recognized hospitals, clinic locations and health care providers extends throughout
Emory Healthcare
Emory Healthcare is the most comprehensive health care system in Georgia. We offer 11 hospitals, the Emory Clinic, more than 250 provider locations, and more than 2,800 physicians specializing in 70 different medical subspecialties. Meaning we can provide treatments and services that may not be avai
RWJBarnabas Health
RWJBarnabas Health is New Jersey’s largest and most comprehensive academic health system, caring for more than 5 million people annually. Nationally renowned for quality and safety, the system includes 14 hospitals and 9,000 affiliated physicians integrated to provide care at more than 700 patient
Wellstar Health System
At Wellstar Health System, our mission is to enhance the health and well-being of every person we serve. Nationally ranked and locally recognized for our high-quality care, inclusive culture and world-class doctors and caregivers, Wellstar is one of the largest, most integrated healthcare systems in
Ramsay Health Care
Ramsay Health Care is a trusted provider of private hospital and healthcare services in Australia, Europe and the United Kingdom. Every year, millions of patients put their trust in Ramsay, confident in our ability to deliver safe, high-quality healthcare with outstanding clinical outcomes. We ope
.png)
UMMS CyberSecurity News
February 26, 2026 08:00 AM
Trends In Healthcare Data Breach Statistics
Our healthcare data breach statistics clearly show an upward trend in data breaches since 2009, when OCR first started publishing data...
February 20, 2026 08:00 AM
UMMC Cyberattack Shuts Down Clinics, Surgeries
A UMMC cyberattack has disrupted operations at the largest academic health science center in Jackson, Mississippi.
January 24, 2026 08:00 AM
With a massive snow storm, health systems’ plans go beyond the hospital
Hospitals need to be coordinating with local and state emergency management teams, evaluate supplies, and plan for staffing amid road...
January 20, 2026 08:00 AM
2026 News
University of Maryland and its School of Medicine Ranked Among Top Universities Nationwide for Research by National Science Foundation.
January 07, 2026 08:00 AM
In Memoriam: Michael Greenberger, JD
The founder of UMB's Center for Cyber, Health, and Hazard Strategies was a distinguished public servant.
December 29, 2025 08:00 AM
The 50+ top Baltimore execs who retired, were hired or moved in 2025
Greater Baltimore saw over 50 CEO changes in 2025, contributing to a record national total of over 1500 executive departures through August.
December 01, 2025 08:00 AM
UM Center for Cyber, Health, and Hazard Strategies Executive Director Markus Rauschecker Elected Chair of the Maryland Cybersecurity Council
Rauschecker succeeds Md. Atty. Gen. Anthony Brown, who previously held the role. He will serve a 2-year term as Maryland confronts rapidly...
October 22, 2025 07:00 AM
How the government shutdown could impact hospital cybersecurity
With skeletal staffs at the nation's cyberdefense agency and some resources on hold, hospitals could be at greater risk of a breach.
October 09, 2025 07:00 AM
Dr. Paul N. Staats Named Chair of Pathology at University of Maryland School of Medicine
Paul N. Staats, MD, a nationally recognized expert in cytopathology and gynecologic pathology, has been appointed Chair of the University of...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
UMMS CyberSecurity History Information
Official Website of University of Maryland Medical System
The official website of University of Maryland Medical System is http://www.umms.org.
University of Maryland Medical System’s AI-Generated Cybersecurity Score
According to Rankiteo, University of Maryland Medical System’s AI-generated cybersecurity score is 781, reflecting their Fair security posture.
How many security badges does University of Maryland Medical System’ have ?
According to Rankiteo, University of Maryland Medical System currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has University of Maryland Medical System been affected by any supply chain cyber incidents ?
According to Rankiteo, University of Maryland Medical System has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does University of Maryland Medical System have SOC 2 Type 1 certification ?
According to Rankiteo, University of Maryland Medical System is not certified under SOC 2 Type 1.
Does University of Maryland Medical System have SOC 2 Type 2 certification ?
According to Rankiteo, University of Maryland Medical System does not hold a SOC 2 Type 2 certification.
Does University of Maryland Medical System comply with GDPR ?
According to Rankiteo, University of Maryland Medical System is not listed as GDPR compliant.
Does University of Maryland Medical System have PCI DSS certification ?
According to Rankiteo, University of Maryland Medical System does not currently maintain PCI DSS compliance.
Does University of Maryland Medical System comply with HIPAA ?
According to Rankiteo, University of Maryland Medical System is not compliant with HIPAA regulations.
Does University of Maryland Medical System have ISO 27001 certification ?
According to Rankiteo,University of Maryland Medical System is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of University of Maryland Medical System
University of Maryland Medical System operates primarily in the Hospitals and Health Care industry.
Number of Employees at University of Maryland Medical System
University of Maryland Medical System employs approximately 11,445 people worldwide.
Subsidiaries Owned by University of Maryland Medical System
University of Maryland Medical System presently has no subsidiaries across any sectors.
University of Maryland Medical System’s LinkedIn Followers
University of Maryland Medical System’s official LinkedIn profile has approximately 99,023 followers.
NAICS Classification of University of Maryland Medical System
University of Maryland Medical System is classified under the NAICS code 62, which corresponds to Health Care and Social Assistance.
University of Maryland Medical System’s Presence on Crunchbase
Yes, University of Maryland Medical System has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/university-of-maryland-medical-system-foundation-breathmobile.
University of Maryland Medical System’s Presence on LinkedIn
Yes, University of Maryland Medical System maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/ummedicalsystem.
Cybersecurity Incidents Involving University of Maryland Medical System
As of March 30, 2026, Rankiteo reports that University of Maryland Medical System has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
University of Maryland Medical System has an estimated 32,295 peer or competitor companies worldwide.
University of Maryland Medical System CyberSecurity History Information
How many cyber incidents has University of Maryland Medical System faced ?
Total Incidents: According to Rankiteo, University of Maryland Medical System has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at University of Maryland Medical System ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability was identified in Totolink A3300R 17.0.0cu.557_b20221024. This affects the function setLanCfg of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. The manipulation of the argument lanIp leads to command injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Perl versions from 5.9.4 before 5.40.4-RC1, from 5.41.0 before 5.42.2-RC1, from 5.43.0 before 5.43.9 contain a vulnerable version of Compress::Raw::Zlib. Compress::Raw::Zlib is included in the Perl package as a dual-life core module, and is vulnerable to CVE-2026-3381 due to a vendored version of zlib which has several vulnerabilities, including CVE-2026-27171. The bundled Compress::Raw::Zlib was updated to version 2.221 in Perl blead commit c75ae9cc164205e1b6d6dbd57bd2c65c8593fe94.
References
- https://github.com/Perl/perl5/commit/c75ae9cc164205e1b6d6dbd57bd2c65c8593fe94
- https://lists.security.metacpan.org/cve-announce/msg/37638919/
- https://metacpan.org/release/PMQS/Compress-Raw-Zlib-2.221/source/Changes
- https://metacpan.org/release/SHAY/perl-5.40.4/changes
- https://metacpan.org/release/SHAY/perl-5.42.2/changes
- https://www.cve.org/CVERecord?id=CVE-2026-3381
Description
Ghidra versions prior to 12.0.3 improperly process annotation directives embedded in automatically extracted binary data, resulting in arbitrary command execution when an analyst interacts with the UI. Specifically, the @execute annotation (which is intended for trusted, user-authored comments) is also parsed in comments generated during auto-analysis (such as CFStrings in Mach-O binaries). This allows a crafted binary to present seemingly benign clickable text which, when clicked, executes attacker-controlled commands on the analyst’s machine.
Risk Information
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Description
A critical security vulnerability in parisneo/lollms versions up to 2.2.0 allows any authenticated user to accept or reject friend requests belonging to other users. The `respond_request()` function in `backend/routers/friends.py` does not implement proper authorization checks, enabling Insecure Direct Object Reference (IDOR) attacks. Specifically, the `/api/friends/requests/{friendship_id}` endpoint fails to verify whether the authenticated user is part of the friendship or the intended recipient of the request. This vulnerability can lead to unauthorized access, privacy violations, and potential social engineering attacks. The issue has been addressed in version 2.2.0.
Risk Information
cvss3
Base: 8.3
Severity: LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
Description
A Server-Side Request Forgery (SSRF) vulnerability exists in parisneo/lollms versions prior to 2.2.0, specifically in the `/api/files/export-content` endpoint. The `_download_image_to_temp()` function in `backend/routers/files.py` fails to validate user-controlled URLs, allowing attackers to make arbitrary HTTP requests to internal services and cloud metadata endpoints. This vulnerability can lead to internal network access, cloud metadata access, information disclosure, port scanning, and potentially remote code execution.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=ummedicalsystem' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
