Ransomware victim disclosure
← All victimsHAL Allergy
Claimed by Ransomhouse · listed 2 years ago
Status timeline
- ListedFeb 28, 2024
- Data leakeddate unknown
At a glance
- Group
- Ransomhouse
- Status
- Data leaked
- Country
- Netherlands
- Sector
- Healthcare
- Listed on leak site
- Feb 28, 2024
- Data size
- 743 GB
- Ransom demanded
- $740
About the victim
AI dossier — public-source company profileHAL Allergy is a healthcare provider specializing in allergy treatment and management. Limited public information is available about the organization's size, location, or operational details.
- Industry
- Healthcare - Allergy & Immunology
Attack summary
Severity: high — Healthcare provider with confirmed data exfiltration of 743 GB; medical records constitute regulated PII under HIPAA and similar frameworks. Data publication confirms breach beyond encryption alone.Ransomware group Ransomhouse claims to have encrypted HAL Allergy's systems and exfiltrated approximately 743 GB of data. The group is demanding $740 in ransom and has published the victim on their leak site.
Data the group says was taken
AI dossier — extracted from the leak post- Patient medical records
- Healthcare data
- Operational files
What the group claims
HAL Allergy is one of the European top players in the development, production and distribution of allergen immunotherapies for the treatment and prevention of allergic diseases. With a highly competitive product portfolio, including subcutaneous and sublingual products, and a future-oriented pipeline portfolio, HAL Allergy strives to provide the best possible medical products and scientific output. HAL Allergy is located in the Bio Science Park in Leiden, The Netherlands.
The leak post
captured from the group's site```
{"data":[{"id":"a1894b76b7004c75a3a0845799af49956592e3d9","display":"animated","header":"HOT NEWS","info":" Trellix is a global cybersecurity company.","url":"","sort":1,"views":"436242"},{"id":"336b257f582b17573c97578efd4b22762bf77344","sort":2,"header":"Trellix (McAfee & FireEye)","url":"https://www.trellix.com/","private":"false","revenue":"1.5-2 B$","employees":"5000","info":"Trellix is a global cybersecurity company formed from the October 2021 merger of McAfee Enterprise and FireEye. It provides services to over 50,000 business and government customers worldwide, protecting more than 200 million endpoints. The companys open and native extended detection and response (XDR) platform helps organizations confronted by todays most advanced threats gain confidence in the protection and resilience of their operations. Trellix, along with an extensive partner ecosystem, accelerates technology innovation through machine learning and automation to empower over 40,000 business and government customers with living security","statusDate":"DEPENDS ON YOU","status":"EVIDENCE","published":"NOT YET","action":"Encrypted","actionDate":"17/04/2026","volume":"~","content":"cybersecurity.html"…Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

