Colorado Rehabilitation and Occupational Medicine (CROM) in the US was targeted by the incransom ransomware threat actor, disrupting operations of the leading Denver-area physiatry practice specializing in non-surgical treatment for musculoskeletal and neurological conditions. Founded in 1992 and operating multiple clinics across Colorado, CROM’s affected systems were impacted by the ransomware attack in the United States. #UnitedStates
Incident Details
- Victim: Colorado Rehabilitation and Occupational Medicine
- Sector: Healthcare
- Country: US
- Actor: incransom
- Source: http://incblog6qu4y4mm4zvw5nrmue6qbwtgjsxpw6b7ixzssu36tsajldoad.onion/blog/disclosures/6a45a1b85ae71db30c88ab68
- Discovered: 2026-07-02T00:28:12.052835+00:00
- Published: 2026-07-01T23:59:00+00:00
Information
- A leading Denver-area physiatry practice specializing in non-surgical treatments for musculoskeletal and neurological conditions.
- Founded in 1992, it operates multiple clinics across the Front Range.
- Focuses on helping patients recover from sports, work, and auto injuries without narcotics or surgery.

Disclaimer: This post is based on public claims made by the ransomware group "incransom". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.