Ransomware victim disclosure
← All victimsInfinEDI, LLC
listed as infinedi.net · Claimed by Settra · listed 3 days ago
Status timeline
- ListedJun 30, 2026
- Data leakeddate unknown
At a glance
- Group
- Settra
- Status
- Data leaked
- Sector
- Technology
- Listed on leak site
- Jun 30, 2026
About the victim
AI dossier — public-source company profileInfinEDI is a healthcare clearinghouse and electronic data interchange (EDI) provider that processes medical claims, eligibility verification, and enrollment data for medical practices and payers. The company provides analytics and claims processing tools to help clinicians manage billing and get paid faster.
- Industry
- Healthcare IT & Electronic Data Interchange (EDI)
Attack summary
Severity: medium — The victim is a healthcare clearinghouse handling sensitive medical and claims data at scale. The company claims PHI was not compromised, but the Settra group's disclosure and the operational disruption (requiring recovery and restoration) indicate a significant breach. Without published proof of exfiltrated data and with the company's assertion that PHI was not compromised, severity is medium rather than high or critical—though the claim warrants skepticism given the group's disclosure.The Settra group claims to have attacked InfinEDI's systems. The company's own statement indicates a cybersecurity incident occurred, though they assert that patient protected health information (PHI) was not compromised based on their investigation.
Data the group says was taken
AI dossier — extracted from the leak post- Patient protected health information (PHI)
- Claims data
- Eligibility records
- Enrollment data
- Payer information
What the group claims
Clearinghouse The company doctors pay to keep their patients' data safe. This article presents only ...
Sources
Source
Indexed 3 days agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

