Ransomware Group: GLOBAL

VICTIM NAME: Dithelm Travel Group

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the GLOBAL Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak pertains to a company operating within the hospitality and tourism sector, specifically a destination management organization based in Asia. The victim, identified as DTH Travel, formerly known as Diethelm Travel, specializes in providing customized travel experiences, including holiday packages, excursions, and corporate events. The attack was publicly announced on July 26, 2025, and the incident potentially exposed sensitive operational data. While specific leaked information or data files are not detailed, the presence of a leak suggests the attacker may have access to internal documents or customer-related information. The affected company’s activities focus on responsible tourism and local service delivery, highlighting the strategic importance of their operational integrity. No additional contact or PII is disclosed. The site includes a screenshot placeholder, indicating that visual evidence of the breach may be available but not shown here. This incident underscores the vulnerability of tourism-related organizations to cyber extortion attempts or data breaches.

The attack date is recorded as July 26, 2025, with the breach occurring in Thailand, emphasizing the regional focus of the incident. The victim operates under a group umbrella, with a global presence across Asia, and provides specialized travel services. The leak could potentially impact client trust and operational security for the company and its partners. Although specific download links or data leaks are not detailed, the incident prompts awareness about cybersecurity risks facing the hospitality and tourism industry, especially organizations managing customer-sensitive and proprietary information. The absence of explicit leaked content indicates that further details may be available through official channels or investigative reports, but none are provided here. The privacy and security of their operations are critical to maintaining customer confidence and operational continuity within the competitive travel industry.