Ransomware victim disclosure
← All victimsInversiones Clinica Del Meta SA
Claimed by Medusalocker · listed 1 year ago
Status timeline
- ListedFeb 28, 2025
- Data leakeddate unknown
At a glance
- Group
- Medusalocker
- Status
- Data leaked
- Country
- Colombia
- Sector
- Healthcare
- Listed on leak site
- Feb 28, 2025
About the victim
AI dossier — public-source company profileClínica Meta (Inversiones Clínica Del Meta S.A.) is a high-complexity healthcare institution in Villavicencio, Meta, Colombia, with over 50 years of operation. It provides multi-level medical services including intensive care units, advanced surgery, emergency care, rehabilitation, diagnostic support, and specialized consultations across two modern facilities.
- Industry
- Healthcare Services - Hospital/Clinic
- Address
- Cl. 33 #36-50, Villavicencio, Meta, Colombia
Attack summary
Severity: critical — Confirmed exfiltration of regulated healthcare data including patient medical records and PII at scale from a multi-facility hospital system serving thousands of patients. Patient data is subject to Colombian healthcare privacy regulations and represents sensitive personal information.MedusaLocker claims to have exfiltrated employee information, patient records, service agreements, password data, and appointment information from Clínica Meta. The group is offering one-day access to the stolen data for $100,000, with options for profit-sharing arrangements.
Data the group says was taken
AI dossier — extracted from the leak post- employee information
- patient information
- service agreements
- password data
- appointment information
What the group claims
www.clinicameta.co Description employee information – patient information – agreements – password data – appointment information Sold with 1-day access Price-$100000 (sale in one hand there are options for making a profit from these files will be included in the deal)
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

