Ransomware Group: WORLDLEAKS

VICTIM NAME: Plane Business Kayan Aero

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the WORLDLEAKS Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak pertains to a Turkish company operating in the aviation sector, named “Plane Business Kayan Aero.” This company specializes in aircraft sales, leasing, and chartering services, and provides consultancy related to aviation investments. The leaked data was discovered on July 21, 2025, and the attack date is noted as July 14, 2025. The company’s primary activities include serving private clients, corporate entities, and government agencies. The leak may include sensitive business information, although specific contents are not detailed publicly. The page features a screenshot, indicating the presence of visual documentation or internal data leaks, but the exact nature of the exposed information remains unspecified. No personal or PII data appears to be disclosed, maintaining a focus on corporate operations and industry-specific details.

The leak does not reveal particular compromise methods or data types but suggests a significant breach of operational information. The leak page provides access to a claimed data dump through a link, and the screenshots imply that internal documents or confidential communications may be involved. As the company operates within the transportation and logistics sector on an international scale, the leak could potentially impact their clients and partners. The public record indicates that the affected organization has limited publicly available background information, with the focus primarily on their aviation-related services and regional activity in Great Britain. Overall, this incident highlights the vulnerabilities faced by companies within specialized industries such as aviation and underscores the importance of robust cybersecurity measures.