Ransomware Group: THREEAM

VICTIM NAME: sehma[.]com

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the THREEAM Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page for SEHMA, a provider network based in Germany specializing in Home Health Care services, indicates that the organization faced a security breach. SEHMA focuses on a range of services, including Home Health Nursing, Hi Tech Infusion, Durable Medical Equipment, and Diagnostic Services. With an emphasis on impeccable continuity of care and excellent patient outcomes, the breach raises concerns about the potential exposure of sensitive patient data and the impact on the trust in health care services provided by SEHMA. The discovery of this incident occurred on February 11, 2025, suggesting that the organization may be dealing with the aftermath of the attack.

Additional details from the leak page highlight the nature of the breach but lack specific information regarding the type of data compromised. There are no indications of any exact download links or specific details available at this time. The organization’s commitment to maintaining high standards in patient care is now challenged by the implications of this cyber incident. Given the sensitive nature of healthcare data, further investigation and protective measures will likely be necessary to safeguard patient information and restore confidence in the services offered by SEHMA.