Threat to Patient Data: Hominem Clinic Under Siege by Qiulong Ransomware

Incident Date:

April 25, 2024

World map



Threat to Patient Data: Hominem Clinic Under Siege by Qiulong Ransomware


Hominem Clinic




Guarulhos, Brazil

, Brazil

First Reported

April 25, 2024

Ransomware Attack on Hominem Clinic by Qiulong Group

Attack Overview

The Hominem Clinic, a Brazilian healthcare provider specializing in male sexual health, has fallen victim to a ransomware attack orchestrated by the notorious Qiulong group. The attackers have threatened to release sensitive patient data unless their demands are met, claiming to have obtained 5 GB of critical data including patient records and financial information.

Company Profile

Hominem is a prominent medical facility in Brazil, focusing on the treatment of conditions like erectile dysfunction, premature ejaculation, and andropause. With over 13,000 patients and a specialized team, the clinic is known for its dedicated healthcare services in male sexual health. The clinic employs advanced practices and offers a 24-hour WhatsApp appointment booking service, making it a significant entity in its sector.

Targeting and Vulnerabilities

The clinic's high patient volume and the sensitive nature of the medical data it handles make it an attractive target for cybercriminals. The Qiulong group's modus operandi includes exploiting vulnerabilities in network security, and it is likely that such vulnerabilities were present at Hominem Clinic. The availability of sensitive patient data, coupled with potentially inadequate cybersecurity measures, would have provided a lucrative opportunity for the attackers.

Qiulong Ransomware Group Details

Qiulong is a well-known ransomware group with a history of targeting organizations in Latin America, particularly in Brazil. Their attacks are sophisticated, utilizing tactics such as exploiting known vulnerabilities and using advanced tools for lateral movement within networks. The group's recent activities have included attacks on various industries, demonstrating their capability and broad reach in the cybercrime arena.

Attack Impact

The ransomware attack on Hominem Clinic not only risks the exposure of sensitive patient data but also threatens the operational capabilities of the clinic. The breach could lead to significant reputational damage, loss of patient trust, and potential legal consequences given the nature of the data involved.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.