RansomwareUnknownJanuary 7, 2025

Sunflower Medical Group ransomware attack (Rhysida, 2025)

Sunflower Medical Group was named on the Rhysida ransomware data-leak (extortion) site on 2025-01-07.

Victim: Sunflower Medical Group

Threat actorRhysida

Imported from ransomwatch — pending editorial review. Machine-extracted from ransomware leak-site monitoring.

On 2025-01-07, Sunflower Medical Group was listed as a victim on the Rhysida ransomware group's data-leak (extortion) site, indicating a ransomware attack with threatened or actual publication of stolen data.

Sources

ransomware.livehttps://www.ransomware.live/
github.comhttps://github.com/joshhighet/ransomwatch

Related incidents

RansomwareUnknownJune 16, 2025

CNPC USA ransomware attack (Rhysida, 2025)

CNPC USA was named on the Rhysida ransomware data-leak (extortion) site on 2025-06-16.

Victim: CNPC USA

RansomwareUnknownJune 7, 2025

Hudson River Housing ransomware attack (Rhysida, 2025)

Hudson River Housing was named on the Rhysida ransomware data-leak (extortion) site on 2025-06-07.

Victim: Hudson River Housing

RansomwareUnknownMay 28, 2025

Cator Ruma & Associates ransomware attack (Rhysida, 2025)

Cator Ruma & Associates was named on the Rhysida ransomware data-leak (extortion) site on 2025-05-28.

Victim: Cator Ruma & Associates

RansomwareUnknownMay 26, 2025

Carrera Chevrolet ransomware attack (Rhysida, 2025)

Carrera Chevrolet was named on the Rhysida ransomware data-leak (extortion) site on 2025-05-26.

Victim: Carrera Chevrolet