clop attacks ENPRECIS

Incident Date:

April 2, 2022

World map



clop attacks ENPRECIS






Southfield, USA

Minnesota, USA

First Reported

April 2, 2022

ENPRECIS Suffers Ransomware Attack by Clop Group

Company Overview

ENPRECIS, a healthcare services provider, operates within the Healthcare Services sector. The company's online presence, found at, primarily showcases their services and offers contact information, without delving into specifics about the company's size, unique offerings, or potential cybersecurity vulnerabilities.

Industry Standing

The Healthcare Services sector, to which ENPRECIS belongs, is increasingly becoming a target for ransomware groups. This sector's critical nature, combined with the sensitive data it handles, makes it an attractive target for cybercriminals. These actors are motivated by financial gain and the potential to cause significant operational disruptions.


Ransomware attacks often exploit weaknesses such as outdated software, unpatched systems, or insufficiently strong passwords. While the specific vulnerabilities at ENPRECIS that may have been exploited by the Clop group remain unclear, it is typical for such groups to leverage phishing emails or known software vulnerabilities to infiltrate a network.

Clop Group

The Clop ransomware group, active since at least 2022, is notorious for its attacks on critical infrastructure across various sectors, including financial services, critical manufacturing, and government facilities. With a significant focus on operations within the United States, Clop has attracted attention and warnings from law enforcement agencies due to its disruptive activities.

The ransomware attack on ENPRECIS underscores the persistent cyber threats faced by healthcare service providers. Although the precise vulnerabilities exploited in this incident are not disclosed, it underscores the necessity for healthcare entities to remain vigilant and fortify their networks and data against ransomware incursions.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.