Ransomware Group: WORLDLEAKS

VICTIM NAME: Scherer Sanitätshaus Gruppe

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the WORLDLEAKS Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page concerns “Scherer Sanitätshaus Gruppe,” a healthcare company based in Germany. The company’s primary focus is on providing medical supplies and orthopedics, including orthopedic aids and rehabilitation technology. The breach was publicly disclosed on July 21, 2025, with the attack occurring earlier that day. The leak includes a screenshot image that appears to document internal information, indicating a significant compromise. The breach potentially exposes sensitive operational details, but no specific PII or confidential customer data is detailed in the publicly shared content. The site emphasizes the company’s commitment to quality healthcare support, while the leak’s contents suggest a serious disruption in their digital infrastructure.

Additionally, the leak page provides a link to a claim URL hosted on the dark web, where further data or evidence related to the attack is available. The breach’s impact on the company’s operations remains unclear, but the exposure of internal screenshots and the public listing suggest ongoing cyber threat activity. The incident occurred in a healthcare setting, which could have implications for patient and partner confidentiality. The site also highlights the attack date as July 10, 2025, indicating when the system was compromised, although details about the specific nature of the attack are not provided. The organization operates primarily in Germany and serves a health-focused industry, which underscores the importance of cybersecurity measures in protecting sensitive health services and data.