Ransomware Group: EVEREST

VICTIM NAME: Balance Diagnostics

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the EVEREST Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The leak page pertains to Balance Diagnostics, a healthcare technology company based in the United States that specializes in developing diagnostic tools for balance-related health conditions such as dizziness and vertigo. The breach was discovered on May 6, 2025, and it is associated with a cyberattack that compromised the company’s systems. The attackers have published a ransom notice and potentially leaked sensitive information related to the company’s operations, although specific data details are not publicly disclosed. The site includes a screenshot of internal documentation, indicating the severity of the breach, and provides a link to a claim portal for affected parties. The leak appears to involve information relevant to the healthcare technology sector and may impact the company’s reputation and operations, highlighting the importance of cybersecurity measures in medical tech environments.

Additional details indicate that the attack is linked to a cyber threat group identified as ‘everest’, with the potential for leaked data to include proprietary technology information or internal communications. There are no explicit details about personal health information or PII in the publicly available data, but the leak underscores the risk of sensitive healthcare data breaches. The incident’s timing makes it a recent and significant event in the healthcare cybersecurity landscape, emphasizing the ongoing threat landscape faced by medical technology providers. The inclusion of visual evidence such as a screenshot of internal materials reinforces the seriousness of the breach, prompting stakeholders to review security protocols and prepare for potential fallout or data exposure.