Ransomware Group: DRAGONFORCE

VICTIM NAME: Koenig Hausverwaltung

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the DRAGONFORCE Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to Koenig Hausverwaltung, a company based in Germany that has been engaged in property management for over 30 years. The attack was publicly disclosed on August 4, 2025, with the compromise date also identified as the same day and time. The leak involves a group known as “dragonforce,” which has published data related to the victim. The page includes a screenshot illustrating some of the leaked material, but no specific sensitive details are provided publicly. The website appears to be compromised, with information possibly including internal documents or other data being made available through the leak. There are no indications of personal identifiers or PII present in the leak summary.

The leak and attack seem to be part of a targeted campaign against companies involved in property management or similar fields, though the activity status is listed as “Not Found,” possibly indicating the company’s current operational status or absence of detailed activity info. The incident was discovered at approximately 14:17 that day, shortly after the compromise was publicly announced. The leak may contain information likely accessible via download links, but explicit URLs or data contents are not shown here. The incorporated screenshot suggests the leak includes visual evidence or internal documentation related to the victim. While the specific contents are not detailed, the event has garnered attention within cybersecurity communities for the potential exposure of corporate information.