Ransomware victim disclosure
← All victimseMedicoERP
Claimed by Killsec · listed 10 months ago
Status timeline
- ListedSep 6, 2025
- Data leakeddate unknown
At a glance
- Group
- Killsec
- Status
- Data leaked
- Country
- India
- Sector
- Technology
- Listed on leak site
- Sep 6, 2025
About the victim
AI dossier — public-source company profileeMedicoERP, developed by DinamicAPPS, is a Colombian cloud-based ERP software platform designed for clinics, hospitals, and IPS (healthcare provider institutions). It offers over 28 modules covering administrative and clinical workflows including billing automation, inventory management, compliance reporting, and centralized patient data management. The platform is tailored to Colombian health sector regulations and serves healthcare institutions of varying sizes.
- Industry
- Healthcare Management Software (ERP for Clinics & Hospitals)
Attack summary
Severity: critical — eMedicoERP is a healthcare ERP system handling regulated medical and patient PII for Colombian clinics and hospitals. Data published status with confirmed exfiltration of a healthcare platform constitutes a critical breach of sensitive medical and personal data at scale.KillSec claims to have published data from eMedicoERP; the disclosure status is marked as data_published, indicating exfiltration and release of data. Given the nature of the platform — a healthcare ERP handling patient and clinical records — the exposed data likely includes sensitive medical and personal information.
Data the group says was taken
AI dossier — extracted from the leak post- Patient records
- Clinical/medical data
- Administrative records
- Billing and financial data
- User credentials
- Compliance and regulatory data
- Inventory management data
What the group claims
N/A
The leak post
captured from the group's siteFounded in 1997, iCare Software, based in the United States, delivers innovative management solutions for childcare and afterschool programs. Serving childcare centers, preschools, afterschool programs, and multi-site operations, iCare automates critical tasks like attendance tracking, staff scheduling, tuition collection, and compliance reporting. Its unique offerings include AI-driven analytics, business intelligence dashboards, and CRM tools to boost enrollment and staff retention. With seamless data migration and robust back-end technology, iCare empowers providers to focus on quality care while streamlining operations and driving growth. Cadorim simplifies money transfers to Mauritania, offering a secure, user-friendly platform for individuals and businesses. With a focus on speed, affordability, and accessibility, Cadorim enables seamless transactions in just three clicks, available around the clock. The company ensures maximum security for every transfer, provides competitive exchange rates with no fees, and processes transactions instantly. Headquartered in Brussels, Belgium, with operations in Nouakchott, Mauritania, Cadorim serves customers seeking reliable, cost-effectiv…
Sources
Source
Indexed 10 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

