alphv attacks secova

Incident Date:

April 19, 2022

World map



alphv attacks secova






Chennai, India

Tamil Nadu, India

First Reported

April 19, 2022

Secova Ransomware Attack: A Cybersecurity Threat in the Business Services Sector

Secova, a leading provider of benefits administration and dependent eligibility verification services, has been targeted by the ransomware group Alphv. The attack was announced on the group's dark web leak site, and the victim's website is Secova operates in the Business Services sector, offering solutions for employee benefits administration, dependent eligibility verification, and compliance with healthcare requirements.

Secova's services are designed to optimize benefits programs by removing ineligible dependents, reducing costs for employers and employees, and ensuring compliance with healthcare requirements. The company's dedication includes round-the-clock help through a 24×7 Call Center, providing guidance and assistance to employees in submitting accurate documentation.

The size of Secova is not explicitly mentioned in the search results, but the company has a client base that includes large hospitality chains, regional insurance and service companies, and a multi-employer in the recreation industry. Secova's expertise in health, employee, and staff benefits management ensures employees receive the best value from their benefits programs.

The vulnerabilities that made Secova a target for ransomware attacks are not explicitly mentioned in the search results. However, it is known that ransomware attacks often exploit vulnerabilities in software, outdated systems, or weak security practices.

Secova's website does not provide detailed information about the company's security measures or its approach to cybersecurity. It is essential for companies in the Business Services sector to prioritize cybersecurity to protect their clients' sensitive data and maintain their reputation.

The ransomware attack on Secova serves as a reminder that no organization is immune to cyber threats. Companies must invest in robust cybersecurity measures, regularly update their systems, and educate their employees about the risks and best practices for online security.


  • Secova. (n.d.). Benefits Administration | Dependent Eligibility Verification Services. Retrieved April 10, 2024, from
  • FBI. (n.d.). Ransomware. Retrieved April 10, 2024, from
  • CISA. (n.d.). Report Ransomware. Retrieved April 10, 2024, from
  • SEC. (2023, March 09). SEC Charges Software Company Blackbaud Inc. for Misleading Investors About Ransomware Attack. Retrieved April 10, 2024, from
  • CISA. (n.d.). Stop Ransomware. Retrieved April 10, 2024, from

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.