Ransomware victim disclosure
← All victimsGrupo SASMET
Claimed by Arcusmedia · listed 2 years ago
Status timeline
- ListedMay 15, 2024
- Data leakeddate unknown
At a glance
- Group
- Arcusmedia
- Status
- Data leaked
- Country
- Brazil
- Sector
- Healthcare
- Listed on leak site
- May 15, 2024
About the victim
AI dossier — public-source company profileGrupo SASMET is a Brazilian healthcare services company based in Manaus, Amazonas, with over 27 years of operation. They provide comprehensive health services including medical consultations, diagnostics, occupational medicine, specialized staffing, and equipment rental for both public and private sector clients across the Amazon region.
- Industry
- Healthcare Services & Occupational Medicine
- Address
- Av. Ayrão, 518 - Centro, CEP-69.025-005 Manaus - AM, Brazil
- Founded
- 1997
Attack summary
Severity: high — Confirmed data exfiltration from a healthcare provider serving public institutions and private clients across the Amazon region. Healthcare data is regulated and sensitive; exposure affects patients, employees, and government entities. Data publication status indicates active disclosure.Arcusmedia claims to have compromised Grupo SASMET and published exfiltrated data. The group claims data publication but the specific scope and nature of exfiltrated records are not detailed in the available leak post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- Patient medical records
- Occupational health assessments
- Diagnostic imaging data
- Laboratory results
- Employee information
- Client/government contract data
What the group claims
Grupo SASMET is a company that...
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

