Ransomware Group: AKIRA

VICTIM NAME: LaboratoriosBelloch (Nelly, Yunsey,Fresh feel)

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the AKIRA Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The leak page pertains to Laboratorios Belloch, a company involved in the manufacturing of personal care and cosmetic products based in Spain. The breach occurred on May 28, 2025, and the attackers have made available a substantial volume of sensitive corporate data totaling 25 GB. This data includes projects, financial records, client information across multiple brands such as Nelly, Yunsey, and Fresh Feel Cosmetics, company correspondence, and some personal documents of employees. The perpetrators emphasize the ease of access by providing a torrent magnet link, allowing anyone with a torrent client to download the data. The leak demonstrates the severity of the breach and the extent of compromised information, which could impact the company’s operations and reputation.

The page includes instructions for downloading the leak via common torrent clients and indicates that the archives contain no password protections. Additionally, visual content such as screenshots of internal documents or project files are mentioned, though no specific images are provided. The breach highlights the exposure of detailed financial and operational data, posing significant risks to client confidentiality and corporate integrity. The attack activity was discovered on the same day as the compromise, underscoring the swift action taken by the perpetrators. Overall, this leak represents a serious security incident with extensive data exposure affecting the company’s internal and client-related information.