Ransomware victim disclosure
← All victimsSPARSH Hospital
Claimed by Killsec · listed 1 year ago
Status timeline
- ListedMar 22, 2025
- Data leakeddate unknown
At a glance
- Group
- Killsec
- Status
- Data leaked
- Country
- India
- Sector
- Healthcare
- Listed on leak site
- Mar 22, 2025
About the victim
AI dossier — public-source company profileSPARSH Group of Hospitals is a multi-specialty hospital network operating 7 locations across Bangalore and one in Davanagere, Karnataka. The group provides comprehensive healthcare services including cardiac sciences, oncology, orthopedics, neuroscience, bone marrow transplant, and women & children's care, along with an associated academy and foundation.
- Industry
- Healthcare - Multi-specialty Hospital
- Address
- Multiple locations in Bangalore, Karnataka, India (Sarjapur Road, Hennur Road, Yelahanka, Infantry Road, Yeswanthpur, RR Nagar); also Davanagere
Attack summary
Severity: high — Healthcare institution with patient data confirmed exfiltrated and published by ransomware operator. Patient PII and medical records in a hospital setting constitute regulated sensitive data at scale, meeting high/critical threshold. Absence of ransom demand suggests data-destruction focus rather than extortion.Killsec group claims to have compromised SPARSH Hospital and published exfiltrated data. The specific details of what data was accessed or whether encryption occurred are not provided in the available leak post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Patient records
- Hospital operational data
- Staff information
What the group claims
N/A
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

