Ransomware victim disclosure
← All victimsGNK Golf
Claimed by 8Base · listed 2 years ago
Status timeline
- ListedDec 21, 2024
- Data leakeddate unknown
At a glance
- Group
- 8Base
- Status
- Data leaked
- Country
- Spain
- Sector
- Hospitality and Tourism
- Listed on leak site
- Dec 21, 2024
About the victim
AI dossier — public-source company profileGNK Golf operates three championship golf courses in the Murcia Region of southeastern Spain, all designed by Nicklaus Design. The company offers golf experiences across El Valle Golf, Hacienda Riquelme Golf, and La Torre Golf, with associated hospitality services including hotels, restaurants, and a spa.
- Industry
- Golf Course Operations & Hospitality
- Address
- Murcia Region, Spain (southeast coast)
Attack summary
Severity: low — The leak post contains only a marketing description of the company's golf courses with a URL; no proof files, screenshots, or specific data inventory is advertised. No operational impact is stated, and the disclosure provides no evidence of actual data access or exfiltration.8Base claims to have compromised GNK Golf and published data. The leak post provides no specific detail on the attack method (encryption, exfiltration, or both) or the nature of exposed data.
What the group claims
GNK GOLF - Authentic NicklausGNK Golf is a golfer's paradise on the south-east coast of Spain. The Murcia Region enjoys 300 days of sunshine a year and is the perfect destination for golfers to visit and play fantastic golf courses. If golf is your passion, you must play all 3 of GNK's golf courses. All designed by the prestigious Nicklaus Design https://www.gnkgolf.com/
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

