Ransomware victim disclosure
← All victimsASST Rhodense
Claimed by Cicada3301 · listed 2 years ago
Status timeline
- ListedJun 20, 2024
- Data leakeddate unknown
At a glance
- Group
- Cicada3301
- Status
- Data leaked
- Country
- Italy
- Sector
- Healthcare
- Listed on leak site
- Jun 20, 2024
About the victim
AI dossier — public-source company profileASST Rhodense is a public healthcare trust (Azienda Socio-Sanitaria Territoriale) operating under the Metropolitan City of Milan, Italy. It manages healthcare and social-health facilities across the districts of Rho, Garbagnate, and Corsico, including the former Guido Salvini Hospital.
- Industry
- Healthcare & Social Health Services
- Address
- Rho, Garbagnate, Corsico, Metropolitan City of Milan, Italy
Attack summary
Severity: critical — Healthcare provider with confirmed exfiltration and publication of patient medical data, a regulated and highly sensitive data category. Italian healthcare data is protected under GDPR and national law; large-scale patient record exposure poses significant harm.Cicada3301 claims to have exfiltrated data from ASST Rhodense and published 15 data leak archives on their dark web portal. No ransom demand is stated; the operator has disclosed the attack via leak post.
Data the group says was taken
AI dossier — extracted from the leak post- Patient medical records
- Hospital administrative data
- Social-health facility records
The group's post references roughly 15 data leak archives advertised proof files.
What the group claims
The ASST Rhodense, belonging to the ATS of the Metropolitan City of Milan, encompasses the territory and healthcare and social-health facilities of the former ASL Districts of Rho, Garbagnate, and Corsico, as well as the hospital facilities of the former "Guido Salvini" Hospital. Downloads: http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak1 http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak2 http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak3 http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak4 http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak5 http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak6 http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak7 http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak8 http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak9 http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak10 http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak12 http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak13 http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak14 http://cicadacnft7gcgnveb7wjm6pjpjcjcsugogmlrat7u7pcel3iwb7bhyd.onion/ASST-Rhodense-dataleak15
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

