UnityPoint Health
Company Details
Linkedin ID:
unity-point-health
Website:
Employees number:
10,005
Number of followers:
39,348
NAICS:
62
Industry Type:
Homepage:
unitypoint.org
IP Addresses:
20
Company ID:
UNI_3094552
Scan Status:
Completed
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
UnityPoint Health Vendor Cyber Rating & Cyber Score
unitypoint.orgAs an integrated health system, we provide care throughout Iowa, western Illinois and southern Wisconsin in not-for-profit hospitals, clinics and home health settings. Each year, we serve nearly 8 million patient visits of all different types, including around 100,000 surgeries and deliver more than 20,000 babies. Whatever stage of life you’re in, our goal is to make your care easier and more personal. At UnityPoint Health, we put people first. And we start from the inside out. We care deeply about making UnityPoint Health a great place to work because our team members are the compassionate core of who we are and how we serve. We’re proud to be recognized as a Top 150 Place to Work in Healthcare by Becker’s Healthcare for four years in a row. We've worked diligently to invest in our team members across key areas, including: o Team Member Empowerment o Leadership Effectiveness o Community Impact and Engagement o Career Development Visit www.unitypoint.org/join-our-team to explore career opportunities at UnityPoint Health.
UnityPoint Health A.I CyberSecurity Scoring
UnityPoint Health Risk Score (AI oriented)Between 750 and 799
UnityPoint Health
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
UnityPoint Health Global Score (TPRM)XXXX
UnityPoint Health
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
UnityPoint Health Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
UnityPoint Health
Breach
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: The California Office of the Attorney General reported that UnityPoint Health experienced a data breach due to a phishing email attack, with unauthorized access occurring between March 14, 2018 and April 3, 2018. The breach potentially exposed protected health information and personal information of unknown individuals; however, no misuse of such information has been reported. The incident was reported on July 30, 2018.
UnityPoint Health Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for UnityPoint Health
Incidents vs Hospitals and Health Care Industry Average (This Year)
No incidents recorded for UnityPoint Health in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for UnityPoint Health in 2026.
Incident Types UnityPoint Health vs Hospitals and Health Care Industry Avg (This Year)
No incidents recorded for UnityPoint Health in 2026.
Incident History — UnityPoint Health (X = Date, Y = Severity)
UnityPoint Health cyber incidents detection timeline including parent company and subsidiaries
UnityPoint Health Company Subsidiaries
As an integrated health system, we provide care throughout Iowa, western Illinois and southern Wisconsin in not-for-profit hospitals, clinics and home health settings. Each year, we serve nearly 8 million patient visits of all different types, including around 100,000 surgeries and deliver more than 20,000 babies. Whatever stage of life you’re in, our goal is to make your care easier and more personal. At UnityPoint Health, we put people first. And we start from the inside out. We care deeply about making UnityPoint Health a great place to work because our team members are the compassionate core of who we are and how we serve. We’re proud to be recognized as a Top 150 Place to Work in Healthcare by Becker’s Healthcare for four years in a row. We've worked diligently to invest in our team members across key areas, including: o Team Member Empowerment o Leadership Effectiveness o Community Impact and Engagement o Career Development Visit www.unitypoint.org/join-our-team to explore career opportunities at UnityPoint Health.
Loading...
UnityPoint Health Similar Companies
UC San Diego Health
UC San Diego Health and Health Sciences has been caring for the community for almost 60 years. In 1966, we established our first medical center. Two years later, in 1968, UC San Diego School of Medicine opened for business. Today, UC San Diego Health is the only academic health system in the San D
The University of Maryland Medical System (UMMS) was created in 1984 when the state-owned University Hospital became a private, nonprofit organization. It has evolved into a multi-hospital system with academic, community and specialty service missions reaching every part of the state and beyond. UM
Aurora Health Care is proud to be a part of Advocate Health, the third-largest nonprofit integrated health system in the U.S. Advocate Health is the third-largest nonprofit, integrated health system in the United States, created from the combination of Advocate Aurora Health and Atrium Health. Prov
St. Luke's University Health Network
Founded in 1872, St. Luke’s University Health Network (SLUHN) is a fully integrated, regional, non-profit network of more than 23,000 employees providing services at 16 campuses and 350+ outpatient sites. With annual net revenue of $4 billion, the Network’s service area includes 11 counties in two s
GE HealthCare
Every day millions of people feel the impact of our intelligent devices, advanced analytics and artificial intelligence. As a leading global medical technology and digital solutions innovator, GE HealthCare enables clinicians to make faster, more informed decisions through intelligent devices, data
Since its start in 1855 as the nation's first hospital devoted exclusively to caring for children, The Children's Hospital of Philadelphia has been the birthplace for many dramatic firsts in pediatric medicine. The Hospital has fostered medical discoveries and innovations that have improved pediatri
Beth Israel Deaconess Medical Center (BIDMC) is part of Beth Israel Lahey Health, a new health care system that brings together academic medical centers and teaching hospitals, community and specialty hospitals, more than 4,000 physicians and 35,000 employees in a shared mission to expand access to
Houston Methodist
Houston Methodist is one of the nation’s leading health systems and academic medical centers. The health system consists of eight hospitals: Houston Methodist Hospital, its flagship academic hospital in the Texas Medical Center, seven community hospitals and one long-term acute care hospital through
Mount Sinai Health System
The Mount Sinai Health System is an integrated health system committed to providing distinguished care, conducting transformative research, and advancing biomedical education. Structured around seven hospital campuses and a single medical school, the Health System has an extensive ambulatory netwo
.png)
UnityPoint Health CyberSecurity News
June 03, 2025 07:00 AM
UnityPoint Health moves to acquire MercyOne hospital in Iowa
UnityPoint Health has reached a tentative deal to acquire MercyOne Siouxland Medical Center, based in Sioux City, Iowa.
April 10, 2024 07:00 AM
New UnityPoint Health-Eyerly Ball clinic planned for Des Moines
585 words | All Latest News, Real Estate and Development | Commercial development, Des Moines, UnityPoint Health-Eyerly Ball,...
January 14, 2024 09:49 PM
UnityPoint Health announces Ankeny medical park
BUSINESS RECORD STAFF | Oct 23, 2015 | 3:54 pm |. 1 min read time. | 180 words | All Latest News, Health and Wellness, Real Estate and Development |.
January 06, 2024 08:00 AM
Healthcare Data Breaches Due to Phishing
Phishing is a leading cause of healthcare data breaches. Discover the four pillars of phishing defense that will help you improve resilience...
December 04, 2023 07:37 AM
UnityPoint Health Reveals 1.4 Million Patient Breach
UnityPoint Health, a multi-hospital group serving parts of Iowa, Illinois, and Wisconsin, is alerting 1.4 million patients to the second data breach the...
November 15, 2023 08:00 AM
Digital pharmacy startup Truepill confirms hackers accessed health data for 2.3M users
Postmeds, doing business as Truepill, confirmed that hackers accessed the personal data of more than 2.3 million patients.
October 12, 2023 07:00 AM
Merger plans dropped: UnityPoint Health, Presbyterian Healthcare Services go separate ways
The systems issued a joint statement saying the deal won't move forward. UnityPoint also announced the departure of its CEO.
July 18, 2023 07:00 AM
The Next Step in UnityPoint Health’s Revenue Cycle Technology Journey
UnityPoint Health is moving from automation to machine learning and patient-facing tech as the health system's revenue cycle technology journey continues.
April 15, 2023 12:13 PM
UnityPoint Health, Sanford call off $11 billion merger
Sanford Health and UnityPoint Health late Tuesday said they have canceled their proposed merger that would have formed an $11 billion, 76-hospital system.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
UnityPoint Health CyberSecurity History Information
Official Website of UnityPoint Health
The official website of UnityPoint Health is http://www.unitypoint.org/.
UnityPoint Health’s AI-Generated Cybersecurity Score
According to Rankiteo, UnityPoint Health’s AI-generated cybersecurity score is 769, reflecting their Fair security posture.
How many security badges does UnityPoint Health’ have ?
According to Rankiteo, UnityPoint Health currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has UnityPoint Health been affected by any supply chain cyber incidents ?
According to Rankiteo, UnityPoint Health has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does UnityPoint Health have SOC 2 Type 1 certification ?
According to Rankiteo, UnityPoint Health is not certified under SOC 2 Type 1.
Does UnityPoint Health have SOC 2 Type 2 certification ?
According to Rankiteo, UnityPoint Health does not hold a SOC 2 Type 2 certification.
Does UnityPoint Health comply with GDPR ?
According to Rankiteo, UnityPoint Health is not listed as GDPR compliant.
Does UnityPoint Health have PCI DSS certification ?
According to Rankiteo, UnityPoint Health does not currently maintain PCI DSS compliance.
Does UnityPoint Health comply with HIPAA ?
According to Rankiteo, UnityPoint Health is not compliant with HIPAA regulations.
Does UnityPoint Health have ISO 27001 certification ?
According to Rankiteo,UnityPoint Health is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of UnityPoint Health
UnityPoint Health operates primarily in the Hospitals and Health Care industry.
Number of Employees at UnityPoint Health
UnityPoint Health employs approximately 10,005 people worldwide.
Subsidiaries Owned by UnityPoint Health
UnityPoint Health presently has no subsidiaries across any sectors.
UnityPoint Health’s LinkedIn Followers
UnityPoint Health’s official LinkedIn profile has approximately 39,348 followers.
NAICS Classification of UnityPoint Health
UnityPoint Health is classified under the NAICS code 62, which corresponds to Health Care and Social Assistance.
UnityPoint Health’s Presence on Crunchbase
Yes, UnityPoint Health has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/unitypoint-health.
UnityPoint Health’s Presence on LinkedIn
Yes, UnityPoint Health maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/unity-point-health.
Cybersecurity Incidents Involving UnityPoint Health
As of March 30, 2026, Rankiteo reports that UnityPoint Health has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
UnityPoint Health has an estimated 32,295 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at UnityPoint Health ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: UnityPoint Health Data Breach
Description: The California Office of the Attorney General reported that UnityPoint Health experienced a data breach due to a phishing email attack, with unauthorized access occurring between March 14, 2018 and April 3, 2018. The breach potentially exposed protected health information and personal information of unknown individuals; however, no misuse of such information has been reported. The incident was reported on July 30, 2018.
Date Detected: 2018-04-03
Date Publicly Disclosed: 2018-07-30
Type: Data Breach
Attack Vector: Phishing Email
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach UNI548072725
Data Compromised: Protected health information, Personal information
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Protected Health Information, Personal Information and .
Which entities were affected by each incident ?
Incident : Data Breach UNI548072725
Entity Name: UnityPoint Health
Entity Type: Healthcare Provider
Industry: Healthcare
Location: California
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach UNI548072725
Type of Data Compromised: Protected health information, Personal information
References
Where can I find more information about each incident ?
Incident : Data Breach UNI548072725
Source: California Office of the Attorney General
Date Accessed: 2018-07-30
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: California Office of the Attorney GeneralDate Accessed: 2018-07-30.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2018-04-03.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2018-07-30.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Protected Health Information, Personal Information and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Protected Health Information and Personal Information.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is California Office of the Attorney General.
.png)
Latest Global CVEs (Not Company-Specific)
Description
A weakness has been identified in code-projects Simple Food Order System 1.0. Affected is an unknown function of the file register-router.php of the component Parameter Handler. Executing a manipulation of the argument Name can lead to sql injection. The attack can be launched remotely. The exploit has been made available to the public and could be used for attacks.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A security flaw has been discovered in code-projects Simple Food Order System 1.0. This impacts an unknown function of the file /all-tickets.php of the component Parameter Handler. Performing a manipulation of the argument Status results in sql injection. The attack can be initiated remotely. The exploit has been released to the public and may be used for attacks.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This affects the function eAxios of the file /mock of the component URL Handler. Such manipulation of the argument req leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The project was informed of the problem early through an issue report but has not responded yet.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was determined in elecV2 elecV2P up to 3.8.3. The impacted element is an unknown function of the file /logs of the component Endpoint. This manipulation of the argument filename causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was found in elecV2 elecV2P up to 3.8.3. The affected element is the function path.join of the file /log/ of the component Wildcard Handler. The manipulation results in path traversal. The attack may be performed from remote. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 5.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=unity-point-health' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
