Ransomware victim disclosure
← All victimsAxxos Hotels
listed as www.axxoshotels.com · Claimed by Stormous · listed 1 year ago
Status timeline
- ListedMay 21, 2025
- Data leakeddate unknown
At a glance
- Group
- Stormous
- Status
- Data leaked
- Country
- Germany
- Sector
- Hospitality and Tourism
- Listed on leak site
- May 21, 2025
About the victim
AI dossier — public-source company profileAxxos Hotels is a Czech hospitality operator managing a portfolio of spa, wellness, and resort properties across multiple destinations including Prague, Karlovy Vary (Carlsbad), Mariánské Lázně (Marienbad), and Jáchymov. The group operates approximately 10+ branded properties offering accommodation, spa services, golf, and dining.
- Industry
- Hospitality & Tourism — Spa & Wellness Hotels
Attack summary
Severity: high — Confirmed exfiltration and publication of PII at scale (identity documents and booking data for multiple customers across a large hotel chain), though no quantified victim count is stated in the post.Stormous claims to have exfiltrated customer data including 2025 booking records and identity card scans. The group has published the data on their leak site.
Data the group says was taken
AI dossier — extracted from the leak post- customer booking records (2025)
- identity card scans
- personal information
What the group claims
IPT – customer data – 2025 bookings – identity cards and more.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

