Ransomware Group: INCRANSOM

VICTIM NAME: Washington Gastroenterology (DHSWA[.]NET)

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the INCRANSOM Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertaining to Washington Gastroenterology, known as WAGI, details critical information about the organization, which was established through the merger of three gastroenterology practices in western Washington. WAGI offers extensive services as the largest private GI practice in the state and has a history of delivering exceptional patient care for nearly fifty years. The data from this leak was discovered on January 17, 2025, and potentially contains sensitive information related to the healthcare operations of WAGI. The page may include screenshots of internal documents that illustrate the extent of the breach and highlight the nature of the leaked data, although the specifics of the content are not explicitly described.

The information available from the leak indicates the organization’s focus on collaboration and innovation in providing gastroenterology care, emphasizing their commitment to extraordinary patient care now and into the future. The incident sheds light on the vulnerabilities faced by healthcare organizations in the digital landscape, especially those dealing with sensitive patient information. While specific download links or detailed descriptions of the compromised data have not been shared, the presence of such elements on the page indicates a serious breach which could have implications for patient privacy and trust. It is crucial for WAGI to assess and address the security measures in place to prevent future incidents.