Grozio Chirurgija

Grozio Chirurgija, also known as Grozio Clinic, is a private medical facility located in Lithuania that provides plastic and reconstructive surgery services. The clinic offers a range of aesthetic procedures aimed at altering or enhancing physical appearance, and it also performs reconstructive interventions for patients requiring medical correction. Its primary market consists of individuals seeking cosmetic surgery within Lithuania, though the nature of its services can attract clients from neighboring regions and, as indicated by the breach, individuals with public profiles. The organisation’s core activity revolves around surgical consultations, operative procedures, and postoperative care delivered in a clinical setting.

The clinic came to public attention in April 2017 when cybercriminals infiltrated its information systems and exfiltrated a substantial volume of sensitive patient data. This breach included personal medical records, identification details, and nude photographs of patients, some of whom were identified as celebrities. The attackers initially attempted to extort the clinic by demanding a bitcoin ransom in exchange for the deletion of the stolen material, and when the clinic reportedly downplayed the incident, they released verified data to prove the authenticity of the theft. Following the public release, the perpetrators also engaged in individual blackmail of high‑profile victims through untraceable communications and offered the entire dataset for sale on dark web marketplaces, pricing individual records between fifty and two thousand euros and the complete package at approximately three hundred forty‑four thousand euros, citing the clinic’s refusal to pay and its perceived inadequate cybersecurity as justification.

These events highlight several distinguishing attributes of Grozio Clinic: its specialization in plastic surgery necessitates the collection and storage of highly personal visual documentation, which increases the sensitivity of its data holdings. The incident underscores the clinic’s role as a custodian of intimate patient information and illustrates the potential reputational and operational risks associated with insufficient protective measures in the healthcare sector. No explicit details regarding the clinic’s ownership, parent company, or subsidiary structure are provided in the available sources, so such structural notes cannot be confirmed from the given information. The clinic continues to operate as a Lithuanian‑based provider of plastic surgery services, with its public profile shaped both by its medical offerings and the notable cybersecurity incident of 2017.