Ransomware victim disclosure
← All victimsDepartment of Culture and Tourism Abu Dhabi
listed as Department of Culture and Tourism Abu Dhabi - Download link · Claimed by Everest · listed 1 year ago
Status timeline
- ListedJul 12, 2025
- Data leakeddate unknown
At a glance
- Group
- Everest
- Status
- Data leaked
- Country
- UAE
- Sector
- Public Sector
- Listed on leak site
- Jul 12, 2025
About the victim
AI dossier — public-source company profileThe Department of Culture and Tourism Abu Dhabi is a government entity responsible for transforming Abu Dhabi into a global cultural hub. It manages cultural heritage preservation, museum operations, international tourism promotion, and Emirati cultural initiatives.
- Industry
- Public Sector - Culture & Tourism
Attack summary
Severity: high — Confirmed exfiltration from a UAE government entity (public sector) represents significant operational and strategic sensitivity. Government data breaches carry inherent criticality despite lack of detail on specific data types.Everest claims to have exfiltrated data from the Department of Culture and Tourism Abu Dhabi. The specific scope of data accessed and operational impact are not detailed in the available post.
Data the group says was taken
AI dossier — extracted from the leak post- government records
- cultural heritage data
- tourism operations information
Original description
AI-summarised, not from the leak postThe Department of Culture and Tourism Abu Dhabi (DCT Abu Dhabi) enables the transformation of the emirate into a global cultural hub. It enhances Abu Dhabi's global image through its rich cultural and historical heritage by stimulating tourism. It organizes events, establishes museums, preserves local heritage, and promotes the Emirati culture internationally.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

