A new ransomware incident has been published on the ransomware.live leak site, attributed to the threat group "gunra," targeting an entity identified as "on-us (HK)." The entry, dated 30 June 2026,…
Ransomware: qilin claims CLINICA AVELLANEDA MEDICAL CENTER (AR) — Healthcare
BREACH. Sourced from ransomwarelive, summarised by Matproof.
AI Analysis
What changed and what to do.
On 16 May 2026, a ransomware group known as Qilin publicly claimed responsibility for a cyberattack against Clínica Avellaneda Medical Center in Argentina. The incident was published on the ransomware group’s leak site, indicating that sensitive patient and operational data may have been exfiltrated. This event falls under the BREACH framework, which typically signals a confirmed data compromise requiring regulatory notification and incident response.
The primary affected organization is Clínica Avellaneda Medical Center, a healthcare provider in Argentina. However, the broader healthcare sector, particularly medical facilities in Latin America and those handling EU patient data under GDPR, should take note. Any healthcare entity with cross-border data flows or reliance on third-party vendors may face indirect exposure if shared systems or data processors are compromised.
Compliance teams should immediately verify whether their organization has any data-sharing agreements or vendor relationships with the affected clinic. If EU personal data is involved, assess whether a GDPR breach notification to the relevant supervisory authority is required within 72 hours. Additionally, review ransomware response playbooks, ensure offline backups are intact, and reinforce staff training on phishing and credential theft, as these are common initial access vectors for Qilin.
This summary is AI-generated for orientation purposes. For regulatory action, always consult the original source linked above.
More BREACH updates
Latest in BREACH.
A new ransomware incident has been published on the ransomware.live leak site, claiming that the group "gunra" has attacked Yuditec S.A., a Uruguayan company. The entry, titled "Not Found," was…
A new ransomware incident has been published on the ransomware.live leak site, claiming that the criminal group "cmdorganization" has compromised Medlink Georgia, a healthcare organization based in…
A new ransomware incident has been published on the ransomware.live leak site, involving a US-based manufacturing company, Port Angeles Composite. The breach was posted on June 30, 2026, under the…
Map this to your controls
Connect regulatory changes to your compliance work.
Matproof maps every regulator update directly to your controls and surfaces the ones that affect your organisation — across 21 frameworks.