Back to Victim Disclosures

Healthcare Retroactive Audits

dragonforceransomware group
Nov 26, 2025

Nov 26, 2025

22 171 128 medical record files, neatly packaged into 11 archives by hospital. The firm Healthcare Retroactive Audits, which was auditing the data for insurers, not only let the leak happen but also took no steps to stop the files from being published. When we approached NIH Information Security Program to discuss the issue, they said they weren’t interested in resolving it. We’re now open to talks with the affected organizations, insurers and the hospitals whose data were lost. These files are only a portion of the total breach, and we’re deciding whether to keep the release at this size or expand it.

Organization Details

Organization

Healthcare Retroactive Audits

Domain

healthcareaudits.net

Industry Sector

Healthcare

healthcareaudits.net

Leak Data

Published

Nov 26, 2025

Discovered

Nov 26, 2025

Data Types
FinancialEmployee records
HIPAA
Leak URL
http://z3wqggtxft7id3ibr7srivv5gjof5fwg76slewnzwwakjuf3nlhukdid.onion/blog/?post_uuid=bb3ec11a-0828-4d77-b6ef-0e9f20e7b368
Site OnlineLast scanned 6h ago

Threat Group

dragonforce

ransomware group

View full group profile →

Quick Facts

SectorHealthcare
PublishedNov 26, 2025