Ransomware Group: STORMOUS

VICTIM NAME: www[.]seashoremotel[.]com

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the STORMOUS Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page concerns a hospitality and tourism service provider, identified by the domain www.seashoremotel.com. The attack occurred on May 21, 2025, and involved a significant compromise of sensitive data. According to the leaked information, the exfiltrated data includes extensive banking card details from various sources, alongside personal identifiers such as full names, email addresses, phone numbers, and official identification documents like passports, driver’s licenses, and ID cards. Visual evidence from the leak indicates that the attackers published screenshots of internal documents or data management systems. This incident underscores the severity of the breach, which potentially exposes the personal and financial details of numerous clients and customers associated with the service provider.

The recovered data has been made accessible through a claim URL on the dark web, attributed to the hacking group Stormous. The leak not only includes personal data but also photographs, possibly selfies or identification images, posing significant privacy and security risks for affected individuals. Although the exact volume of data remains unspecified, the leak appears to be substantial, covering various types of sensitive information. The incident emphasizes the critical importance of cybersecurity measures for organizations handling personal and financial information in the hospitality sector, highlighting the potential for widespread misuse if such data falls into malicious hands. The leak date and discovered timestamp confirm that the breach was identified and disclosed on the same day, underlining the rapidly evolving threat landscape faced by targeted organizations.