Ransomware victim disclosure
← All victimsAvalon Hotels
listed as www.avalon-hotel.com · Claimed by RansomHub · listed 1 year ago
Status timeline
- ListedFeb 25, 2025
- Data leakeddate unknown
At a glance
- Group
- RansomHub
- Status
- Data leaked
- Country
- United States
- Listed on leak site
- Feb 25, 2025
About the victim
AI dossier — public-source company profileAvalon Hotels is a luxury boutique hotel group founded in 1999, operating two primary properties in Beverly Hills and Palm Springs, California. The company specializes in mid-century modern design, offering high-end accommodations, fine dining (Viviane Restaurant in Beverly Hills, Chi Chi in Palm Springs), wellness services (Estrella Spa), and event/wedding hosting for discerning clientele.
- Industry
- Luxury Boutique Hotels & Hospitality
- Address
- Beverly Hills, California (primary location); Palm Springs, California (secondary location)
- Founded
- 1999
Attack summary
Severity: low — Post contains no proof files, screenshots, or concrete evidence of data exfiltration or operational disruption. Only listing/announcement with generic marketing text; no specific data compromise or proof disclosed.RansomHub claims to have conducted an attack on Avalon Hotels. The leak post contains only generic descriptive text about the hotel without explicit details on encryption, exfiltration, or specific data compromise.
Data the group says was taken
AI dossier — extracted from the leak post- Guest records
- Booking/reservation data
- Payment information
- Employee records
- Business operational data
Original description
AI-summarised, not from the leak postAvalon Hotel is a luxury boutique hotel located in Beverly Hills, California. Known for its chic mid-century modern design. Alongside stylish and conveniently situated accommodations, guests can take advantage of a range of amenities including a heated pool, fitness center, and gourmet restaurant. Personalized service and a tranquil atmosphere make Avalon a favorite among discerning travelers.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

