Ransomware Group: INTERLOCK

VICTIM NAME: Weisman Children’s

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the INTERLOCK Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to Weisman Children’s Rehabilitation Hospital, a prominent pediatric rehabilitation provider located in the United States. The attack was identified on August 4, 2025, marking a significant security incident for the healthcare facility that specializes in pediatric services within the Delaware Valley. The breach appears to involve the theft or compromise of sensitive information linked to the hospital’s operations. The leak page includes a screenshot showing internal details of the incident, suggesting that the attackers gained access to confidential hospital data. No specific personally identifiable information or PII was publicly disclosed through this leak.

The leak provides a link to a claim URL hosted on the dark web, indicating that the attackers might be offering data for sale or urging negotiations. The critical nature of the healthcare sector emphasizes the importance of this breach, potentially impacting patient confidentiality and hospital operations. The attackers’ group is associated with the name “interlock,” and the profile appears to be related to malicious infostealer activities targeting organizational data. The breach’s reported discovery and the date of the attack suggest it was swiftly detected, but full details remain under investigation. The incident underscores the ongoing cybersecurity risks faced by healthcare institutions and the need for enhanced protective measures.