Ransomware victim disclosure
← All victimsSharm Reef Hotel
Claimed by Spacebears · listed 1 year ago
Status timeline
- ListedJan 14, 2025
- Data leakeddate unknown
At a glance
- Group
- Spacebears
- Status
- Data leaked
- Country
- Egypt
- Listed on leak site
- Jan 14, 2025
About the victim
AI dossier — public-source company profileSharm Reef Hotel is a 3-star resort located in Sharm El-Sheikh, Egypt, in the Um El Sid area. The hotel offers accommodation with amenities including an outdoor pool, private beach access, restaurant, bar, and recreational facilities. It caters to leisure tourists and couples, with multilingual staff and services ranging from €61 per night.
- Industry
- Hospitality & Hotels
- Address
- Umm El Seed, Tower Bay, Sharm El-Sheikh, Egypt
Attack summary
Severity: medium — Confirmed exfiltration of PII (guest and employee data) and financial records at a hospitality business. Data has been published. No operational disruption stated, and scale appears limited to a single 3-star hotel rather than a large chain.Spacebears claims to have exfiltrated client personal data, staff personal data including salaries and positions, financial reports, and other confidential documentation from Sharm Reef Hotel. The group has published the data without stated ransom demands.
Data the group says was taken
AI dossier — extracted from the leak post- Client personal data
- Staff personal data (salaries, positions)
- Financial reports
- Confidential business documentation
What the group claims
Sharm Reef Hotel is located in the Um El Sid area in the center of Sharm El Sheikh, Egypt.Contents:- Client Data (personal data,)- Stuff Personal Data (including salary and position data)- Financial Reports- Other Valuable and Confidential Documentation https://sharmreefhotel.com-sharmelsheikh.com/
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

