Incident Details
- Victim: www.regencycountryclub.com
- Country: ES
- Actor: stormous
- Source: http://6sf5xa7eso3e3vk46i5tpcqhnlayczztj7zjktzaztlotyy75zs6j7qd.onion/regencytorviscas.com
- Discovered: 2025-05-11 03:40:18.308227
- Published: 2025-05-11 03:39:08.839399
Information
- Full customer reservation databases including names, phone numbers, emails, addresses, and booking dates
- Scanned ID documents such as passports and national IDs
- Internal emails accessed via Outlook Web Access (OWA)
- Employee and customer email lists
- RDP credential files containing usernames and passwords
Disclaimer: This post is based on public claims made by the ransomware group "stormous". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.