Ransomware Group: AKIRA

VICTIM NAME: Hölscher Holding

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the AKIRA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to Hölscher Holding, a European company specializing in consulting, planning, and implementing storage and logistics systems. The breach has resulted in the exposure of a significant volume of corporate data, totaling approximately 24 gigabytes. This includes sensitive documents containing personal information of top management and employees, as well as detailed financial records, project data, customer information—such as dates of birth and addresses—and contractual agreements. Notably, data related to prominent clients like BMW, Ford, MAN, and Mercedes have also been compromised. The leak features confidential non-disclosure agreements and other critical business documents, posing a substantial risk to the company’s operational security and reputation.

The attack was discovered on August 1, 2025, with the data being prepared for upload by the attackers. The breach is associated with the ransomware group ‘akira.’ The incident highlights the severe implications of data breaches in the logistics and consulting sectors, emphasizing the importance of robust cybersecurity measures. The leak page suggests that the attackers are actively releasing data, which may include screenshots of internal documents or other data leaks. Although no direct download links are publicly shown, the volume and sensitivity of the exposed information warrant increased vigilance and immediate response from affected parties. This case underscores the critical need for ongoing cybersecurity precautions to prevent such incidents.