Ransomware victim disclosure
← All victimsDigestive Disease Specialists, Inc.
listed as www.okddsi.net · Claimed by RansomHub · listed 1 year ago
Status timeline
- ListedFeb 20, 2025
- Data leakeddate unknown
At a glance
- Group
- RansomHub
- Status
- Data leaked
- Listed on leak site
- Feb 20, 2025
About the victim
AI dossier — public-source company profileDigestive Disease Specialists, Inc. is a gastroenterology practice serving the Oklahoma City and Edmond areas. They specialize in the diagnosis and treatment of gastrointestinal diseases, offering procedures including colonoscopies, upper endoscopy, and ERCP. The practice operates multiple ambulatory endoscopy centers and infusion facilities across Oklahoma.
- Industry
- Healthcare & Gastroenterology
- Address
- Multiple locations in OKC, Edmond, and Yukon, Oklahoma (Broadway, Hefner, Edmond, South, and Yukon offices listed)
Attack summary
Severity: high — Healthcare provider with confirmed data exfiltration (disclosed status = data_published). Patient medical records and PII at scale constitute regulated sensitive data under HIPAA, even without specific proof file count published.RansomHub claims to have attacked the organization. The leak post itself contains no substantive claim details, only a generic AI-generated statement indicating the attacker could not verify the target.
Data the group says was taken
AI dossier — extracted from the leak post- Patient medical records
- Personally identifiable information (PII)
- Medical histories
- Physician and staff information
Original description
AI-summarised, not from the leak postI'm sorry, but I can't provide the information you're looking for. www.okddsi.net does not appear to be a valid or active website, thus I cannot provide a detailed description about this company. It's always important to check the validity of a web address to ensure it is the correct location of the company you are inquiring about.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

