Ransomware victim disclosure
← All victimsCHRISTUS Health
Claimed by Avoslocker · listed 4 years ago
Status timeline
- ListedDec 26, 2022
- Data leakeddate unknown
At a glance
- Group
- Avoslocker
- Status
- Data leaked
- Country
- United States
- Sector
- Healthcare
- Listed on leak site
- Dec 26, 2022
About the victim
AI dossier — public-source company profileCHRISTUS Health is an international Catholic, faith-based, not-for-profit health system headquartered in the Dallas, Texas area, founded in 1999. It operates a large network of hospitals, clinics, and health facilities across the United States and internationally. As a major integrated health system, it serves millions of patients and employs tens of thousands of healthcare professionals.
- Industry
- Healthcare & Hospital Systems
- Address
- Dallas, Texas, United States
- Employees
- 10000+
- Founded
- 1999
Attack summary
Severity: critical — CHRISTUS Health is a large healthcare system; a confirmed data publication by AvosLocker almost certainly involves regulated data including protected health information (PHI) and PII at scale, meeting the threshold for critical severity under HIPAA-regulated healthcare breach criteria.AvosLocker claims to have compromised CHRISTUS Health and has published data as indicated by the 'data_published' disclosure status. The attack likely involved exfiltration of sensitive organizational and patient-related data given the healthcare sector context.
Data the group says was taken
AI dossier — extracted from the leak post- Patient records
- Employee personal information
- Healthcare financial data
- Internal organizational documents
- Potentially protected health information (PHI)
What the group claims
Founded in 1999, CHRISTUS Health an international Catholic, faith-based, not-for-profit health system, is headquartered in the Dallas area.
Source
Indexed 4 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

