Hospital Santa Rita in Brazil Targeted by INC Ransomware Group

• INC Ransomware claimed to have compromised Hospital Santa Rita’s systems.
• The threat actor leaked some exfiltrated files as proof of the security breach.
• Stolen data could include confidential patient records, operational documents, and financial information.

The Hospital Santa Rita in Brazil has reportedly become the latest victim of a ransomware attack, with the notorious INC Ransomware hacking group claiming responsibility and publishing samples of the stolen data online as proof of the compromise.

The cybercriminal group made the announcement on June 19 on their breach website and offered a three-day window for ransom payment.

In their post, the hackers highlight that Hospital Santa Rita is known for cancer treatment and a philanthropic entity.

If the hospital fails to meet this demand, the INC Ransomware group threatens to release the full dataset, which could include confidential patient records, operational documents, and financial information. 

INC Ransom is known for its aggressive tactics, including extortion through public data leaks as leverage to pressure victims into compliance. In February 2025, the threat actor released videos of sleeping patients as proof of their Persante Health Care cyber attack, a New Jersey-based hospital that provides sleep management services.

This attack represents a significant concern, as hospitals are often prime targets for ransomware groups due to the sensitive patient information they handle and the critical importance of uninterrupted operations.

The hospital has not issued an official statement regarding the alleged data breach, leaving it uncertain whether negotiations are underway or if law enforcement has been involved to counter the attackers.