Ransomware victim disclosure
← All victimsArcisGolf
Claimed by ALPHV/BlackCat · listed 2 years ago
Status timeline
- ListedFeb 13, 2024
- Data leakeddate unknown
At a glance
- Group
- ALPHV/BlackCat
- Status
- Data leaked
- Country
- United States
- Sector
- Hospitality and Tourism
- Listed on leak site
- Feb 13, 2024
About the victim
AI dossier — public-source company profileArcis Golf operates nearly 70 private, resort, and public golf clubs across the United States. The company provides golf club management, amenities, dining, wellness, and entertainment services to members and guests, positioning itself as an industry leader in the modern club experience.
- Industry
- Golf Club Management & Hospitality
Attack summary
Severity: high — Confirmed data publication by ALPHV against a large hospitality operator managing 70 clubs with significant member/guest databases; likely includes PII at scale. No specific data inventory or proof count visible in excerpt, but published status indicates exfiltration confirmed.ALPHV claims to have compromised Arcis Golf and published data. The specific data exfiltrated and operational impact are not detailed in the provided post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- member records
- employee data
- financial records
- operational systems
What the group claims
Arcis Golf is the premier operator of nearly 70 private, resort, and public golf clubs in the United States and an industry leader, providing dynamic direction and unrivaled amenities that complement diverse playing experiences. Our properties enhance the golf and country club lifestyle to a level of excellence designed to exceed the needs and expectations of family, friends, co-workers, and guests of all ages. We are also known for our innovative management, with a best-in-class leadership team that is reinventing the modern club experience, making it more relevant to the lifestyles of today's consumers. Arcis Golf is committed to enhancing service levels, amenities, and programming to broaden the appeal for members and guests at all its properties.
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

