Ransomware Group: QILIN

VICTIM NAME: evergreen-hotel

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the QILIN Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to Evergreen Hospitality Group, a prominent hospitality and tourism company located in British Columbia, Canada. The incident was publicly disclosed shortly after the attack, which is believed to have occurred on May 29, 2025. The company’s operations include managing multiple accommodations across numerous destinations, emphasizing regional tourism and hospitality services. Details indicate that the attack compromised its data, and the leak page includes a screenshot preview of the affected internal information or related communications. The event underscores the ongoing cybersecurity challenges faced by large regional hospitality providers, highlighting potential impacts on business operations and customer trust.

The leak appears to include sensitive data or internal documents, which have been made accessible via a dark web URL. The victim’s website domain is www.evergreenhotelgroup.com. The threat actor group responsible for the attack is identified as “qilin.” No specific evidence of data theft, such as credentials or detailed information, is provided publicly. A screenshot depicting possibly internal documents or system interfaces indicates the severity of the breach. This incident serves as a reminder of the importance of robust cybersecurity measures in the hospitality sector to protect customer data, proprietary information, and operational continuity.