Ransomware victim disclosure
← All victimsReventics
Claimed by Royal · listed 3 years ago
Status timeline
- ListedFeb 13, 2023
- Data leakeddate unknown
At a glance
- Group
- Royal
- Status
- Data leaked
- Country
- United States
- Sector
- Technology
- Listed on leak site
- Feb 13, 2023
About the victim
AI dossier — public-source company profileReventics is a US-based healthcare technology company specializing in revenue cycle management, clinical documentation improvement (CDI), and coding solutions for hospitals and health systems. The company provides AI-driven analytics and physician advisory services to help healthcare organizations optimize reimbursement and compliance. It operates primarily in the United States serving inpatient and outpatient healthcare providers.
- Industry
- Healthcare Revenue Cycle Management & Clinical Documentation
- Employees
- 51-200
Attack summary
Severity: critical — Reventics handles protected health information (PHI) and sensitive healthcare financial data for hospitals and health systems at scale; as a healthcare technology/RCM vendor, a breach touches HIPAA-regulated data across multiple downstream client organizations, and the disclosed status is 'data_published' indicating confirmed exfiltration.The Royal ransomware group claimed an attack against Reventics, with the disclosure status indicating data has been published. No specific details about encryption or exfiltration scope are available from the captured leak post.
Data the group says was taken
AI dossier — extracted from the leak post- Patient health information (PHI)
- Healthcare billing and claims data
- Clinical documentation records
- Employee personal information
- Financial records
- Client hospital data
Sources
- Victim sitereventics.com
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

