Intermountain Health Company CyberSecurity Posture
intermountainhealthcare.org
As the largest nonprofit health system in the Mountain West, Intermountain Health is dedicated to creating healthier communities and helping our patients and caregivers thrive. It’s time to think of health in a whole new way, and by partnering with our patients and communities, providing expert care closer to home, and making great health more affordable, we can help more people get and stay well. We proudly invest back into improving the care we deliver, and our pioneering research is making healthcare more personalized, effective, and affordable. Serving patients and communities throughout the Mountain West, primarily in Colorado, Utah, Montana, Nevada, Idaho, and Wyoming, Intermountain includes 34 hospitals, 400+ clinics, a medical group, affiliate networks, homecare, telehealth, health insurance plans, and other services - along with wholly owned subsidiaries including Select Health, Castell, Tellica Imaging, and Classic Air Medical.
Company Details
intermountain-healthcare
32,995
112,578
62
intermountainhealthcare.org
0
INT_2153515
In-progress
Intermountain Health Risk Score (AI oriented)Between 750 and 799
Intermountain Health Global Score (TPRM)XXXX
Description: On July 16, 2021, the Maine Office of the Attorney General reported a data breach involving Intermountain Healthcare that was discovered on May 17, 2021, after a hacking incident began on April 6, 2021. The breach affected approximately 28,628 individuals, including two residents of Maine, potentially exposing personal health information (PHI) such as names and scanned images.
No incidents recorded for Intermountain Health in 2025.
No incidents recorded for Intermountain Health in 2025.
No incidents recorded for Intermountain Health in 2025.
Intermountain Health cyber incidents detection timeline including parent company and subsidiaries
As the largest nonprofit health system in the Mountain West, Intermountain Health is dedicated to creating healthier communities and helping our patients and caregivers thrive. It’s time to think of health in a whole new way, and by partnering with our patients and communities, providing expert care closer to home, and making great health more affordable, we can help more people get and stay well. We proudly invest back into improving the care we deliver, and our pioneering research is making healthcare more personalized, effective, and affordable. Serving patients and communities throughout the Mountain West, primarily in Colorado, Utah, Montana, Nevada, Idaho, and Wyoming, Intermountain includes 34 hospitals, 400+ clinics, a medical group, affiliate networks, homecare, telehealth, health insurance plans, and other services - along with wholly owned subsidiaries including Select Health, Castell, Tellica Imaging, and Classic Air Medical.
Be at the heart of exceptional care. Team MHS Florida is an award-winning group of friends and colleagues at one of the largest not-for-profit health systems in the nation. We're 17,000 strong, advancing towards a brighter future together. We're passionate about the work we do, delivering deep, pe
Since its start in 1855 as the nation's first hospital devoted exclusively to caring for children, The Children's Hospital of Philadelphia has been the birthplace for many dramatic firsts in pediatric medicine. The Hospital has fostered medical discoveries and innovations that have improved pediatri
Express Scripts by Evernorth provides pharmacy benefits services with a clear mission: To simplify complexities and provide holistic, condition-focused care and clinically superior pharmacy benefit solutions for our clients and the people they serve. Guided by our core values of service, patient ca
Homes and communities are where people thrive. We’ve held this belief since our founding in 1967 and have worked to make it reality for the thousands of individuals we serve. We continue that work today and are using innovation, technology, and collaboration across our organization to do more for mo
O Ministério da Saúde é o órgão do Poder Executivo Federal responsável pela organização e elaboração de planos e políticas públicas voltados para a promoção, a prevenção e a assistência à saúde dos brasileiros. É função do Ministério dispor de condições para a proteção e recuperação da saúde da pop
ABOUT THE UNIVERSITY OF TEXAS MEDICAL BRANCH: Texas' first academic health center opened its doors in 1891 and today has four campuses, five health sciences schools, six institutes for advanced study, a research enterprise that includes one of only two national laboratories dedicated to the safe stu
A world-leading integrated healthcare provider, IHH believes that making a difference starts with our aspiration to Care. For Good. Our team of 65,000 people commit to deliver greater good to our patients, people, the public and our planet, as we live our purpose each day to touch lives and trans
We are a strong, passionate team of more than 12,500 who take pride in caring for every person who comes through our doors. We lift each other up so we can provide the very best and safest care to those who need us most. Together. Every day. With the support of our university, we make up an acade
Com cerca de 80 anos de experiência, a Hapvida é hoje a maior empresa de saúde integrada da América Latina. A companhia, que possui mais de 69 mil colaboradores, atende quase 16 milhões de beneficiários de saúde e odontologia espalhados pelas cinco regiões do Brasil. Todo o aparato foi construído a
.png)
On Tuesday morning, Family Health West Hospital in Fruita discovered that it was the target of a cyberattack.
Dozens of organizations, including 11 health systems, have agreed to work together to help improve the sharing of medical data across...
These health IT influencers are change-makers, innovators and compassionate leaders who use technology to make a difference in provider...
Erik Decker, Intermountain Health's VP & CISO, and Shawn Anderson, cybersecurity director of data, endpoint and application protection,...
Intermountain and Microsoft recently formed a rural health coalition 1 with an interesting set of partners: Gates Ventures, Epic, and West Health.
The House Energy and Commerce Oversight and Investigations Subcommittee April 1 discussed cybersecurity threats in legacy medical devices during a hearing.
Intermountain Health CISO Erik Decker explains how healthcare organizations can mitigate third-party risk with proper due diligence.
The 43rd annual J.P. Morgan Healthcare Conference wrapped on Thursday after four days of company presentations, networking and meetings...
The annual JP Morgan Healthcare Conference is officially underway, bringing the healthcare and biopharma industries' biggest wheelers and dealers to San...
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
The official website of Intermountain Health is http://intermountainhealthcare.org/.
According to Rankiteo, Intermountain Health’s AI-generated cybersecurity score is 790, reflecting their Fair security posture.
According to Rankiteo, Intermountain Health currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
According to Rankiteo, Intermountain Health is not certified under SOC 2 Type 1.
According to Rankiteo, Intermountain Health does not hold a SOC 2 Type 2 certification.
According to Rankiteo, Intermountain Health is not listed as GDPR compliant.
According to Rankiteo, Intermountain Health does not currently maintain PCI DSS compliance.
According to Rankiteo, Intermountain Health is not compliant with HIPAA regulations.
According to Rankiteo,Intermountain Health is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Intermountain Health operates primarily in the Hospitals and Health Care industry.
Intermountain Health employs approximately 32,995 people worldwide.
Intermountain Health presently has no subsidiaries across any sectors.
Intermountain Health’s official LinkedIn profile has approximately 112,578 followers.
Intermountain Health is classified under the NAICS code 62, which corresponds to Health Care and Social Assistance.
Yes, Intermountain Health has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/intermountain-healthcare.
Yes, Intermountain Health maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/intermountain-healthcare.
As of December 11, 2025, Rankiteo reports that Intermountain Health has experienced 1 cybersecurity incidents.
Intermountain Health has an estimated 30,928 peer or competitor companies worldwide.
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Title: Intermountain Healthcare Data Breach
Description: A data breach involving Intermountain Healthcare that potentially exposed personal health information (PHI) such as names and scanned images.
Date Detected: 2021-05-17
Date Publicly Disclosed: 2021-07-16
Type: Data Breach
Attack Vector: Hacking
Common Attack Types: The most common types of attacks the company has faced is Breach.
Data Compromised: Personal health information (phi), Names, Scanned images
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personal Health Information (Phi), Names, Scanned Images and .
Entity Name: Intermountain Healthcare
Entity Type: Healthcare Provider
Industry: Healthcare
Customers Affected: 28628
Type of Data Compromised: Personal health information (phi), Names, Scanned images
Number of Records Exposed: 28628
Sensitivity of Data: High
Personally Identifiable Information: Names
Source: Maine Office of the Attorney General
Date Accessed: 2021-07-16
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Office of the Attorney GeneralDate Accessed: 2021-07-16.
Most Recent Incident Detected: The most recent incident detected was on 2021-05-17.
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2021-07-16.
Most Significant Data Compromised: The most significant data compromised in an incident were Personal Health Information (PHI), Names, Scanned Images and .
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Scanned Images, Personal Health Information (PHI) and Names.
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 314.0.
Most Recent Source: The most recent source of information about an incident is Maine Office of the Attorney General.
.png)
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Get company history
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rapid