Ransomware victim disclosure
← All victimsSermo
Claimed by Medusa · listed 1 year ago
Status timeline
- ListedJul 6, 2025
- Data leakeddate unknown
At a glance
- Group
- Medusa
- Status
- Data leaked
- Country
- United States
- Sector
- Healthcare
- Listed on leak site
- Jul 6, 2025
About the victim
AI dossier — public-source company profileSermo is an online social network platform exclusively for licensed physicians, offering peer-to-peer collaboration, medical crowdsourcing, clinical case discussions, and drug ratings. With over 1 million verified physicians globally, the platform enables healthcare professionals to share insights, earn money through medical surveys and research participation, and access educational content to improve patient care.
- Industry
- Healthcare Technology & Medical Social Networks
- Address
- 3 Times Square, 12th Floor, New York, NY 10036, United States
- Employees
- 450+
Attack summary
Severity: high — Sermo hosts sensitive professional and health-related data for over 1 million verified physicians. Confirmed data publication by a ransomware operator indicates exfiltration of potentially regulated healthcare professional information and medical knowledge base, creating significant exposure despite lack of stated ransom or specific proof inventory.Medusa claims to have compromised Sermo and published exfiltrated data. The group post does not specify what data categories were taken or details of operational impact.
Data the group says was taken
AI dossier — extracted from the leak post- Physician profiles and credentials
- User account information
- Clinical discussion records
- Drug rating database entries
- Survey participation data
What the group claims
Sermo is an exclusive online community for licensed physicians, offering a platform for peer-to-peer collaboration, medical crowdsourcing, and real-time discussion of clinical cases. Sermo provides healthcare professionals with tools to connect globally, share insights, and improve patient care through collective knowledge. Sermo's corporate office is located at 3 Times Square, 12th Floor, New York, NY 10036, United States, and has 450+ employees.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

