Ransomware victim disclosure
← All victimsRocky Mountain Gastroenterology
Claimed by Meow · listed 2 years ago
Status timeline
- ListedOct 13, 2024
- Data leakeddate unknown
At a glance
- Group
- Meow
- Status
- Data leaked
- Country
- United States
- Sector
- Healthcare
- Listed on leak site
- Oct 13, 2024
About the victim
AI dossier — public-source company profileRocky Mountain Gastroenterology (RMG) is a multi-location gastroenterology practice based in the Denver, Colorado area, operating for over 20 years. They specialize in diagnosis and treatment of gastrointestinal disorders, offering services including endoscopy, colonoscopy, and liver disease management across multiple clinic and endoscopy centers in Colorado.
- Industry
- Healthcare - Gastroenterology
- Address
- Multiple locations; primary: 355 Union Blvd Suite #200, Lakewood, CO 80228
- Founded
- 2000
Attack summary
Severity: high — Healthcare provider with confirmed data publication involving patient medical records and PII. Even without explicit proof file counts, exfiltration of medical and personal data from a healthcare provider is regulated (HIPAA) and sensitive at scale.The Meow group claims to have attacked Rocky Mountain Gastroenterology and published data from the breach. No specific claims about encryption or data exfiltration scope are detailed in the provided leak post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Patient medical records
- Patient personal information
- Billing information
- Clinical data
What the group claims
Rocky Mountain Gastroenterology is a healthcare provider specializing in the diagnosis and treatment of gastrointestinal disorders. Based in Colorado, the practice offers services such as endoscopy, colonoscopy, and liver disease management. Their team of experienced gastroenterologists is committed to providing high-quality, patient-centered care in a compassionate and professional environment.
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

