A ransomware campaign targeting healthcare organizations globally is reported under the variant name ‘MedLocker,’ but no authoritative primary source (CISA, HHS HC3, or confirmed vendor report) has corroborated this named variant. Confidence in specific technical details is LOW. This entry provides posture-elevation guidance based on established ransomware-as-a-service behavioral patterns applicable to healthcare environments, not confirmed IOC-driven intelligence.