Ransomware Group: QILIN

VICTIM NAME: alpresor[.]se

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the QILIN Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak pertains to the website of a prominent travel company operating in the Nordic region, specifically in Sweden, Norway, and Finland. The incident was discovered on August 4, 2025, and the breach involved the exposure of a comprehensive archive containing sensitive data. The company, recognized as one of the largest tour operators in the region, appears to have experienced a significant data compromise, including personal details of customers who have traveled to the Alps. The leak has made a full archive publicly accessible on the dark web, indicating a severe breach of confidentiality.

The leak includes a screenshot of the compromised data, revealing a substantial amount of information that might encompass personal identification details, potentially affecting numerous clients. No specific victim PII has been disclosed in this summary to maintain confidentiality and security. The incident was grouped under a known threat actor group, “qilin,” which suggests it may be part of a broader campaign targeting hospitality and tourism businesses. Download links or other data extraction points are present, emphasizing the scale of the data exposed. The full archive’s accessibility imposes a serious privacy threat to the affected individuals, and the incident highlights the importance of robust cybersecurity measures in the tourism sector.