Ransomware victim disclosure
← All victimsSrishti Software Applications Pvt Ltd
listed as www.srishtisoft.com · Claimed by Dragonransomware · listed 2 years ago
Status timeline
- ListedDec 15, 2024
- Data leakeddate unknown
At a glance
- Group
- Dragonransomware
- Status
- Data leaked
- Country
- India
- Sector
- Technology
- Listed on leak site
- Dec 15, 2024
About the victim
AI dossier — public-source company profileSrishti Software is a healthcare-focused software company founded in 2005 and headquartered in Bangalore, India. They specialize in PARAS, a comprehensive healthcare delivery platform used by hospitals, clinics, laboratories, and diagnostics centers across multiple countries including USA, UK, Middle East, Africa, China, and ASEAN regions.
- Industry
- Healthcare Software & Medical IT Solutions
- Address
- Bangalore, India
- Founded
- 2005
Attack summary
Severity: critical — Healthcare software company with patient data exposure across multiple countries. PARAS platform handles patient records, clinical data, and hospital administration across diverse healthcare providers. Exfiltration of healthcare data at scale constitutes regulated sensitive information (PII + medical data) with significant compliance and privacy implications.DragonRaaS claims to have encrypted the company's website and exfiltrated all data. The group has published the attack on their leak site, indicating data has been stolen.
Data the group says was taken
AI dossier — extracted from the leak post- Healthcare system databases
- Patient records
- Hospital administration data
- Business records
- Company source code/systems
What the group claims
**Website down, and all data it was encrypted 🔥 [+] SrishtiSoft is a private software company founded in 2012 by Pavan Gayakwad, specializing in customized business solutions including desktop, web, and mobile applications. [+] ****www.srishtisoft.com**** DragonRaaS 💌**
Sources
- Victim sitesrishtisoft.com
- Leak posthttps://t.me/DragonRansom/423
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

