Healthcare’s Elite Penetration Testing Services Firm

Hacking attacks and breaches for healthcare entities impact patient safety, system availability and uptime, revenue generation, and regulatory compliance.

Ransomware attacks alone cost US healthcare organizations $20.8bn in 2020 and the average cost of a breach for healthcare entities is $7.13m per event.

Our penetration testing simulates the latest real-world cyberattacks on healthcare organizations and identifies your security exposures before malicious actors can strike.


  • Decades of experience hacking healthcare organizations
  • Safe testing methods to protect patient safety
  • Identify vulnerabilities common to the healthcare industry
  • Findings mapped for compliance with HIPAA, HITECH, PCI-DSS, & NIST
  • Aligned with industry standards like MITRE, OWASP, and OSSTMM
  • Advisors to ONC / HHS on ethical hacking
  • Comprehensive testing and reporting:
    • Multiple avenues of attack and entry
    • Manual testing from our highly specialized and certified team
    • Robust reporting with tech detail and terminology the business can understand

Dartmouth-Hitchcock has partnered with Meditology Services since 2012.

Over that period of time, they have helped with multiple projects, both large and small, repeatedly delivering as promised. We have come to trust their insights regarding regulatory issues and their vast experience of the healthcare industry when developing security policies, strategies and budgets. We regularly use their ethical hacking skills to test the effectiveness of our security program.  In summary, they have earned our trust and become an integral part of our security toolset.

Peter Merrill
Director of Information Systems, Dartmouth-Hitchcock Medical Center

Onsite Health Diagnostics has relied on Meditology Services for HIPAA security risk assessment and penetration testing since 2014.

Meditology’s information security services have provided OHD’s customers and business partners with confidence in the seriousness with which we take the our responsibility to protecting their highly sensitive data. We have been more than pleased with Meditology’s professionalism, diligence and responsiveness, and we look forward to working with them for years to come. Since our founding, OHD has been dedicated to exceptional client service, providing stress-free employee health screenings and workforce health data analytics. Our clients, who include Fortune 500 corporations, hospital systems, financial institutions, state & local governments and small businesses alike, rely on OHD’s commitment to privacy and security when it comes to their employee health data.

Kyle Alexander
CEO, Onsite Health Diagnostics