Alleged Ransomware Attack Targets MedicalFile.io
A notorious ransomware group known as Killsec3 is claiming responsibility for a cyberattack on healthcare software provider MedicalFile.io, alleging they have stolen 500GB of sensitive data. The group has posted a ransom demand on the dark web, warning that if payment isn’t made within seven days, they will leak the stolen information.
The Attack & Ransom Demand
A leaked screenshot of Killsec3’s ransom note suggests that the attackers have already provided a sample of the stolen data as proof. While the exact ransom amount remains unspecified—listed simply as “€???”—the hackers claim they are open to negotiations, not only with MedicalFile.io but also with third parties who might be interested in purchasing the stolen data.
Like many ransomware gangs, Killsec3 is using a familiar playbook: offering to delete the stolen data in exchange for payment, a tactic often used to pressure victims into compliance.
MedicalFile.io is known for developing advanced healthcare software designed to improve efficiency and security for medical professionals worldwide. If these hacking claims are legitimate, the breach could pose a serious risk to patient privacy, potentially exposing confidential medical records, proprietary software details, and internal company data.
The company has yet to release an official statement, and it remains unclear whether they are negotiating with the hackers, working with cybersecurity experts, or preparing a legal response.
A Growing Threat to Healthcare
Ransomware attacks targeting healthcare institutions and medical software companies have been increasing, with cybercriminals recognizing the high value of personal and medical data. The potential consequences of such breaches are severe, often violating privacy laws and putting patients, healthcare providers, and businesses at risk.
Authorities worldwide are ramping up their efforts to track and dismantle these cybercriminal groups, but ransomware remains a lucrative operation. Security experts urge healthcare companies to proactively strengthen their cybersecurity defenses to prevent becoming the next target.
What Comes Next?
With Killsec3’s seven-day deadline looming, the next steps taken by MedicalFile.io—or law enforcement—will be crucial. If the company refuses to pay, sensitive data could be dumped online, further damaging its reputation and potentially leading to legal consequences.
For now, all eyes are on how MedicalFile.io responds—and whether this attack becomes another cautionary tale in the escalating cyber war on healthcare.