Ransomware group everest hits Sidra Kuwait Hospital
Sidra Kuwait Hospital — a healthcare target operating in KW has been listed by the everest ransomware group on 2026-05-28. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.
Incident Report
| Target Organization | Sidra Kuwait Hospital |
|---|---|
| Threat Group | everest |
| Summary | [AI generated] Sidra Kuwait Hospital is a private healthcare facility located in Kuwait. It provides a range of medical and clinical services to patients, including diagnostics, outpatient consultations, and specialized treatments. Operating within the private healthcare sector in Kuwait, the hospital serves both local residents and expatriates, contributing to the country's growing private medical infrastructure alongside public health institutions. |
| Date of Breach | 2026-05-28 |
| Discovery Date | 2026-05-28 |
| Region | KW |
| Target Domain | sidrakwhospital.com |
| Business Sector | Healthcare |
| Severity | MEDIUM |
Claim by everest
[AI generated] Sidra Kuwait Hospital is a private healthcare facility located in Kuwait. It provides a range of medical and clinical services to patients, including diagnostics, outpatient consultations, and specialized treatments. Operating within the private healthcare sector in Kuwait, the hospital serves both local residents and expatriates, contributing to the country's growing private medical infrastructure alongside public health institutions.
Posted by the everest threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.
Sources
Victim website
sidrakwhospital.com
Leak post (onion / Tor)
http://ransomocmou6mnbquqz44ewosbkjk3o5qjsl3orawojexfook2j7esad.onion/news/Sidra_Kuwait_Hospital/
Open this URL in Tor Browser. Browsing leak sites carries real risk — view passively, never click further.
Disclaimer
HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.