donutleaks attacks Solenture

Incident Date:

September 28, 2022

World map



donutleaks attacks Solenture






Pittsburgh, USA

Pennsylvania, USA

First Reported

September 28, 2022

Solenture Healthcare Solutions Group Targeted by DonutLeaks Ransomware Group

Solenture Healthcare Solutions Group (HSG), a prominent entity in the healthcare sector known for developing products and services tailored for healthcare brokers, third-party administrators, and consultants, has recently fallen victim to the ransomware group DonutLeaks. The cyberattack was disclosed on the group's clandestine dark web leak site, signaling a significant breach of security within the organization.

Company Overview

Solenture stands out as a healthcare solutions provider dedicated to crafting and sourcing innovative solutions aimed at niche group healthcare markets. Through leveraging their extensive network, Solenture endeavors to fulfill the requirements of partners and their clients with a commitment to identifying the most suitable solutions, irrespective of the selection process. With over six years in the industry, Solenture has successfully developed or sourced Minimum Essential Coverage (MEC) and Minimum Value Plan (MVP) solutions, aiding partners and their clients in adhering to the Patient Protection and Affordable Care Act regulations.

The collective expertise of Solenture's team, boasting over a century of professional experience across financial, insurance, executive benefits, and management consulting sectors, underscores the company's capability. This expertise, coupled with a history of enduring relationships, exemplifies Solenture's dedication to applying the Benefits of Innovative Thinking® across all aspects of their operations.

Analysis of the Cybersecurity Breach

While specific vulnerabilities that rendered Solenture susceptible to cyber threats remain undisclosed, it is evident that the company was compromised by the LockBit ransomware variant—a strain recently countered by concerted efforts from U.S. and U.K. law enforcement agencies. This incident suggests potential lapses in Solenture's cybersecurity posture, such as the utilization of outdated software or inadequate cybersecurity measures, which facilitated the ransomware infiltration.

In summary, the targeting of Solenture Healthcare Solutions Group by the DonutLeaks ransomware group underscores a critical cybersecurity breach within an organization committed to delivering unique healthcare solutions. Despite the company's extensive experience and dedication to innovation, the incident highlights the ever-present need for robust cybersecurity defenses to mitigate the risks posed by sophisticated cyber threats.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.