Ransomware Group: KILLSEC

VICTIM NAME: Fortis

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the KILLSEC Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page associated with the victim, identified as Fortis, reveals the breach details related to their operations in the healthcare sector. The group responsible for the attack is noted as ‘killsec.’ The compromise appears to have been discovered on October 28, 2024, with the published report coming shortly thereafter on the same date. While the specific nature of the data breached has not been detailed in the summary, it is indicated that multiple employees, users, and third-party entities may have been affected. Fortis operates within the medical services landscape in Belgium, emphasizing the possible impact on sensitive health-related information.

The page shows statistics regarding the affected entities, including 26 employees, 68 users, and various third-party organizations. There were 33 third-party entities noted, with 21 domains directly linked. The hackers also appear to have accessed four URLs related to employees and 17 URL endpoints associated with users. Although specific data leaks or download links are present, their details are not disclosed in the summary. In light of the ongoing threat posed by ransomware in the healthcare sector, this incident serves as a critical reminder of the vulnerabilities that organizations may face.