Ransomware victim disclosure
← All victimsLegacy Treatment Services
Claimed by Interlock · listed 2 years ago
Status timeline
- ListedOct 26, 2024
- Data leakeddate unknown
At a glance
- Group
- Interlock
- Status
- Data leaked
- Country
- United States
- Sector
- Healthcare
- Listed on leak site
- Oct 26, 2024
About the victim
AI dossier — public-source company profileLegacy Treatment Services is a New Jersey-based healthcare provider offering comprehensive mental and behavioral health services, including addiction treatment, counseling, medication management, crisis intervention, and specialized programs for children and families across multiple county locations.
- Industry
- Mental Health & Behavioral Health Services
- Address
- Multiple locations in Burlington, Atlantic, Camden, and Middlesex counties, New Jersey
Attack summary
Severity: critical — Confirmed exfiltration and publication of patient medical records from a healthcare provider constitutes exposure of regulated PII and sensitive health information at scale, triggering critical severity regardless of proof file count.Interlock claims to have exfiltrated internal documents, patient records, and a large SQL database from Legacy Treatment Services. Data has been published.
Data the group says was taken
AI dossier — extracted from the leak post- Patient records
- Internal documents
- SQL database
What the group claims
Legacy Treatment Services has locations in Burlington, Atlantic, Camden, and Middlesex counties. They offer mental and behavioral health services, addiction services, counseling, medication management and more. And we offer you internal documents, patient records, and a large SQL database.
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

