Ransomware victim disclosure
← All victimsVietnam Airlines
Claimed by Hunters International · listed 9 months ago
Status timeline
- ListedOct 3, 2025
- Data leakeddate unknown
At a glance
- Status
- Data leaked
- Country
- Vietnam
- Sector
- Transportation/Logistics
- Listed on leak site
- Oct 3, 2025
About the victim
AI dossier — public-source company profileVietnam Airlines is the national flag carrier of Vietnam, headquartered in Long Bien District, Hanoi. The airline operates an international network spanning Asia, Europe, and Oceania, and is a member of the SkyTeam global airline alliance. Its fleet includes wide-body and narrow-body aircraft such as the Airbus A350, Boeing 787, and Airbus A320.
- Industry
- Commercial Aviation
- Address
- 200 Nguyen Son Street, Long Bien District, Hanoi, Vietnam
- Employees
- 10000+
- Founded
- 1956
Attack summary
Severity: high — Vietnam Airlines is a state-owned national flag carrier with a large employee and passenger base; confirmed data publication by Hunters International indicates successful exfiltration of potentially sensitive operational and personal data from a critical transport infrastructure operator, warranting a high severity rating even without explicit data inventory details.Hunters International claims to have compromised Vietnam Airlines and has published data as disclosed, indicating exfiltration of company data; the specific data categories and volume have not been detailed in the available leak post.
Data the group says was taken
AI dossier — extracted from the leak post- Undisclosed company data
Original description
AI-summarised, not from the leak postVietnam Airlines is the national flag carrier of Vietnam, founded in 1956. Headquartered in Long Bien District, Hanoi, the airline operates flights across Asia, Europe, and Oceania. It is a member of SkyTeam, marking its status among global standards of aviation. Its fleet includes modern aircraft such as Airbus A350, Boeing 787, and A320. The airline embodies cultural elements of Vietnam in its service.
Source
Indexed 9 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

