Ransomware victim disclosure
← All victimsNirvana Hotels
listed as nirvanahotels.com.tr · Claimed by Stormous · listed 1 year ago
Status timeline
- ListedMay 21, 2025
- Data leakeddate unknown
At a glance
- Group
- Stormous
- Status
- Data leaked
- Country
- Turkey
- Sector
- Hospitality and Tourism
- Listed on leak site
- May 21, 2025
About the victim
AI dossier — public-source company profileNirvana Hotels is a hotel operator based in Antalya, Turkey, offering all-inclusive accommodation and hospitality services. The property markets itself as a local, health-conscious resort destination.
- Industry
- Hospitality & Tourism
- Address
- Antalya, Turkey
Attack summary
Severity: high — Confirmed exfiltration of PII at scale (guest names, emails, booking data) and internal communications. Data has been published. Hospitality sector breach affecting customer privacy and operational security.Stormous claims to have exfiltrated guest personal data including full names, email addresses, booking references, customer feedback, and internal hotel communications. The group has published the data.
Data the group says was taken
AI dossier — extracted from the leak post- Guest full names
- Email addresses (internal and external)
- Booking/reference numbers
- Customer complaints and feedback
- Internal hotel communications
What the group claims
Full names of hotel guests a Email addresses (internal and external) Customer complaints and feedback content Booking or reference numbers Internal hotel communication data ......
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

