Ransomware Group: FRAG

VICTIM NAME: Cryoviva

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the FRAG Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak pertains to Cryoviva, a prominent private cord blood bank based in Singapore, operating within the healthcare sector. The attack was publicly disclosed on June 12, 2025, with the threat actors claiming to have extracted sensitive company documents. The compromised data includes financial statements and reporting documents, which could potentially impact the company’s confidentiality and reputation. The leak does not specify the nature of the breach beyond the claimed data exfiltration, but it indicates a serious security incident targeting critical financial and operational information. The disclosure of such documents might pose risks related to internal operations, financial integrity, and customer trust.

During the breach, the threat actors did not release specific links or samples of the leaked data but indicated the presence of confidential financial and reporting documents. The incident has been classified as a targeted attack within the healthcare industry, affecting a key player in Singapore’s medical services sector. The leak page includes a screenshot section, which, if available, might show internal documents or screens related to the attack, though no detailed graphical content is provided here. Organizations in similar sectors should consider this incident as a reminder of the importance of robust cybersecurity defenses to protect sensitive operational information from malicious actors.