Nordfjord Hotell in Norway reported a ransomware incident attributed to threat actor nova, where Nova provided trees and sample files taken from stolen data upon contact with the hotel’s support department. The actor demanded engagement through the support channel and presented excerpts from exfiltrated information as proof of compromise. #Norway
Incident Details
- Victim: Nordfjord Hotell
- Sector: Hospitality and Tourism
- Country: NO
- Actor: nova
- Source: http://novadmrkp4vbk2padk5t6pbxolndceuc7hrcq4mjaoyed6nxsqiuzyyd.onion/nordfjord-hotell
- Discovered: 2026-05-19T01:55:14.628324+00:00
- Published: 2026-05-19T01:55:02.276968+00:00
Information
- A hotel in Nordfjordeid, the administrative centre of Stad Municipality in Norway’s Nordfjord region, popular with both business and leisure travellers.
- Offers modern amenities such as a full-service spa, an indoor pool, and conference facilities.
- The Nova group said it would provide a tree and samples from stolen data if the company contacts its support department.
Disclaimer: This post is based on public claims made by the ransomware group "nova". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.