Ransomware victim disclosure
← All victimsbusaba
Claimed by Devman · listed 10 months ago
Status timeline
- ListedSep 29, 2025
- Data leakeddate unknown
At a glance
- Group
- Devman
- Status
- Data leaked
- Country
- United Kingdom
- Sector
- Hospitality and Tourism
- Listed on leak site
- Sep 29, 2025
About the victim
AI dossier — public-source company profileBusaba is a modern Thai restaurant group operating multiple locations in London, United Kingdom. The brand focuses on Bangkok-inspired cuisine including salads, Pad Thais, curries and plant-based dishes, served in a communal sharing style. It offers dine-in, delivery, click-and-collect, and group dining services.
- Industry
- Restaurants & Food Service
- Address
- London, United Kingdom
- Employees
- 201-500
Attack summary
Severity: high — Data has been confirmed as published by the threat actor following an apparently unmet $580,000 ransom demand, indicating actual exfiltration and release of company data. The hospitality sector typically holds customer PII, payment-related records, and employee data.The ransomware group devman claims to have attacked Busaba and published data, having demanded a ransom of $580,000 USD. The disclosure status indicates data has been published, suggesting exfiltration of company data.
Data the group says was taken
AI dossier — extracted from the leak post- Customer records
- Employee data
- Business operations data
- Financial records
What the group claims
Ransom: 580000 USD
Sources
Source
Indexed 10 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

