alphv attacks Quantek Medical

Incident Date:

February 13, 2022

World map



alphv attacks Quantek Medical


Quantek Medical




Rockwall, USA

Texas, USA

First Reported

February 13, 2022

Quantel Medical Targeted by Alphv Ransomware Group

Quantel Medical, a subsidiary of the French group Lumibird, has recently become a target of the Alphv ransomware group. Since its inception in 1993, Quantel Medical has been a key player in the ophthalmology sector, developing, manufacturing, and marketing advanced medical laser and ultrasound solutions. The acquisition of Ellex, an Australian company with significant operations in Japan and the United States, by Lumibird Medical in July 2020, has further solidified their stance in the global ophthalmology market.

Quantel Medical's innovative product range is aimed at diagnosing and treating the four primary causes of blindness: cataract, glaucoma, diabetic retinopathy, and macular degeneration. With a footprint in over 110 countries, either directly or through a distributor network, Quantel Medical has established a significant global presence.

The ransomware attack on Quantel Medical is indicative of a larger trend within the healthcare sector, which has experienced a surge in ransomware attacks in recent years. In 2023, there was a reported increase in attempted ransomware attacks, affecting 10% of organizations worldwide, up from 7% the previous year.

Ransomware attacks can lead to various detrimental outcomes for businesses, including data theft and demands for ransom payments. To counteract these risks, organizations are advised to prioritize prevention strategies, such as minimizing their attack surface by addressing vulnerabilities and deploying anti-ransomware solutions.

The Alphv ransomware group, known for its innovative attack tactics, has targeted high-profile entities across various industries, with a particular focus on the healthcare sector. While specific vulnerabilities that made Quantel Medical an attractive target to this group are not detailed, the company's extensive size and international presence likely contributed to its selection by ransomware operators seeking significant impact and financial gain.

The incident involving Quantel Medical underscores the persistent cyber threat landscape in the healthcare industry. It is imperative for organizations within this sector to maintain high levels of vigilance and adopt comprehensive cybersecurity measures to safeguard against such threats.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.