Ransomware victim disclosure
← All victims中央鍼灸接骨院 (Chuo Acupuncture and Osteopathic Clinic)
listed as cyuou.com · Claimed by safepay · listed 6 days ago
Status timeline
- Listed
May 25, 2026
- Data leaked
At a glance
About the victim
AI dossier — public-source company profile中央鍼灸接骨院 is a small acupuncture and osteopathic clinic located in Nagoya's Kita Ward, Japan. Founded in 2001, it provides customized treatment services including acupuncture, massage, osteopathic manipulation, and beauty acupuncture, with 90% of patients coming through referrals.
- Industry
- Healthcare - Acupuncture & Osteopathic Clinic
- Address
- 名古屋市北区長喜町4-20-2 富士和ビル 1F (Nagoya, Kita Ward, Chokishi-cho 4-20-2, Fujiwa Building 1F)
- Founded
- 2001
Attack summary
Severity: medium — The victim is a small healthcare provider with likely patient personally identifiable information (PII) and medical data at risk. However, the ransomware post provides no concrete proof of data exfiltration, proof files, or screenshots. The disclosure status is 'data_published' but without evidence or ransom demand demonstrated, and no operational disruption details provided. Healthcare data exposure warrants medium-to-high concern, but absence of proof documentation lowers confidence.The SafePay ransomware group claims to have compromised cyuou.com (the clinic's domain). The group post indicates they specialize in website development, digital advertising, and graphic design services, suggesting the victim may operate as a web/design service rather than operate the clinic site directly. No specific data exfiltration or encryption impact details are stated.
Data the group says was taken
AI dossier — extracted from the leak post- Patient records
- Medical history
- Contact information
- Insurance details
- Appointment scheduling data
What the group claims
Founded in 2000, the company specializes in website development, digital advertising, graphic design, Wi-Fi infrastructure projects, and online business support …
Sources
Source
Indexed 6 days agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.