Ransomware Group: WORLDLEAKS

VICTIM NAME: Horecamaterialen De Meester NV

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the WORLDLEAKS Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to Horecamaterialen De Meester NV, a Belgian company operating in the hospitality and tourism industry. The company, established in 1980, specializes in supplying wholesale hospitality equipment such as kitchen appliances, furniture, utensils, and tableware. The breach was discovered on May 18, 2025, with the attack date recorded as May 7, 2025. The leak indicates that the attackers accessed and potentially compromised sensitive operational data, although specific details about the information stolen are not provided. The page features a screenshot of internal documents, suggesting the leak includes confidential company information. Download links or data files may be available for download, further indicating data exfiltration. The victim’s website domain is listed, but no PII such as individual employee details are disclosed. This incident highlights a cybersecurity breach within the hospitality supply sector in Belgium, emphasizing the importance of data security measures for companies dealing with critical operational information.

The leak page also includes a link to the claim URL, which directs to an onion site associated with the ransomware group. The threat actors have published the leak publicly, along with a screenshot that appears to show internal documents or system screenshots. No explicit evidence of personal data or customer information has been detailed, but the exposure of internal files could pose risks of further reconnaissance or targeted attacks. The attack date and discovery date suggest the breach was identified within two weeks of occurrence. The incident underscores the ongoing threat to the hospitality sector from cybercriminal groups, with potential impacts on supply chain operations and business continuity in Belgium. The leak serves as a stark reminder of the importance of robust cybersecurity defenses in safeguarding operational data against ransomware threats.