The threat actor safepay has claimed to have ransomware-infected DFC-SYSTEMS GmbH, a Munich-based German software company specializing in clinical documentation and digital workflow. The incident has impacted Germany.
Incident Details
- Victim: dfcsystems.de
- Country: DE
- Actor: safepay
- Source: http://safepaypfxntwixwjrlcscft433ggemlhgkkdupi2ynhtcmvdgubmoyd.onion/blog/post/dfcsystemsde/
- Discovered: 2025-12-19 18:47:07.406343
- Published: 2025-12-19 18:46:55.598737
Information
- DFCSYSTEMS.de, a German software and technology company based in Munich, specializes in clinical documentation and digital workflow.
- The company was targeted as a ransomware victim.
- The threat actor responsible is identified as Safepay.
Disclaimer: This post is based on public claims made by the ransomware group "safepay". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.