Ransomware victim disclosure
← All victimsPinnacle Claims Management
listed as pinnacletpa.com · Claimed by Dispossessor · listed 2 years ago
Status timeline
- ListedApr 19, 2024
- Data leakeddate unknown
At a glance
- Group
- Dispossessor
- Status
- Data leaked
- Country
- United States
- Sector
- Healthcare
- Listed on leak site
- Apr 19, 2024
About the victim
AI dossier — public-source company profilePinnacle Claims Management is a third-party administrator (TPA) specializing in self-funded health benefits administration for employers. Founded in 1996, the company provides comprehensive services including claims processing, benefits administration, pharmacy benefit management, health management programs, and stop-loss insurance. They serve employers across various sizes and industries.
- Industry
- Healthcare Administration & Third-Party Benefits Claims Management
- Founded
- 1996
Attack summary
Severity: high — Pinnacle Claims Management handles sensitive health benefit data, claims records, and pharmacy information for multiple employers and their employees. As a TPA, they maintain substantial repositories of PII and health-related data. Confirmed data publication by a ransomware group elevates severity despite lack of explicit proof inventory detail, given the regulated nature of health information.The Dispossessor group claims to have attacked pinnacletpa.com. The leak post provides minimal detail; the status indicates data has been published, but specific claims regarding encryption, exfiltration, or data types are not articulated in the provided excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Employee health benefits records
- Claims data
- Employer benefits information
- Pharmacy records
- Potentially PII and health information of plan participants
What the group claims
pinnacletpa.com
Sources
- Victim sitepinnacletpa.com
- Leak posthttps://dispossessor.com/blogs/117
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

