Ransomware Group: QILIN

VICTIM NAME: sbh

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the QILIN Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to a hospitality entity with a focus on luxury hotels situated in Fuerteventura, Lanzarote, and Zanzibar. The attack was publicly disclosed on June 24, 2025, and the breach was discovered later that evening, indicating that the incident was identified promptly following the initial compromise. The specific attack date is recorded as June 24, 2025. The website associated with the victim appears to be a hotel group that has been operating for over 30 years, offering comfort, gastronomy, diverse facilities, and high-quality services in prime locations. The leak details suggest that sensitive data from this hospitality organization may have been accessed or exfiltrated during the attack.

The leak page includes a screenshot of internal information and possibly other data leaks, which are accessible via the provided dark web URL. Notably, the disclosure does not specify the nature of the compromised data nor any personally identifiable information, but the presence of a dedicated leak page and data exfiltration signals a significant security incident. The incident has been attributed to the threat group “qilin,” a known actor associated with such ransomware activities. The situation underscores the importance of cybersecurity measures within the hospitality sector to prevent and respond to such attacks, which could impact customer confidentiality and operational integrity. The leak showcases the potential risks faced by hotel chains and hospitality providers in the digital era.