everest attacks Stages Pediatrics

Incident Date:

October 18, 2022

World map



everest attacks Stages Pediatrics


Stages Pediatrics




New York, USA

Washington, USA

First Reported

October 18, 2022

Stages Pediatrics Suffers Ransomware Attack

Stages Pediatrics, a healthcare provider based in New York City, has been targeted by the ransomware group Everest. The attack was announced on the group's dark web leak site. The healthcare services sector has been a frequent target for ransomware attacks, with exploitable vulnerabilities and unpatched software being common entry points for threat actors.

Company Overview

Stages Pediatrics is a medical practice that offers pediatric services, including vaccines, physical exams, and telehealth consultations. The company's core mission is to provide outstanding value in healthcare to its patients.

Industry Standout

Stages Pediatrics stands out in the healthcare sector by offering a patient portal and the Healow app for appointment scheduling and telehealth consultations. This digital approach to healthcare services may have made the company more vulnerable to ransomware attacks, as digital platforms can be targeted for exploitable vulnerabilities.


The healthcare sector is particularly susceptible to ransomware attacks due to the high value placed on patient data and the potential for significant financial losses. In the case of Stages Pediatrics, the company's digital approach to healthcare services may have exposed it to vulnerabilities that could be exploited by threat actors. Additionally, the company's size and industry sector make it a likely target for ransomware attacks.

Mitigation Strategies

To mitigate the risk of ransomware attacks, healthcare providers should focus on patching software vulnerabilities, implementing multi-factor authentication, and educating employees on phishing and social engineering tactics. Regular security assessments and the use of advanced security platforms can also help prevent and respond to ransomware attacks.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.