HackerFeeds
All ransomware incidents
balloons.com

Ransomware group medusa hits Balloons Everywhere

HIGH
·Consumer Services·US·2026-01-29

Balloons Everywhere — a consumer services target operating in US has been listed by the medusa ransomware group on 2026-01-29. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.

Incident Report

Target OrganizationBalloons Everywhere
Threat Group
medusa
SummaryBalloons.com is a wholesale distributor specializing in a wide range of balloon products including foil film, latex balloons, and balloon decoration kits. They cater to various themes, occasions, and licensed characters, offering items for both everyday events and special celebrations. Their services target individuals and businesses looking for party supplies, with a focus on DIY balloon decor and promotional products. Additionally, they provide customers with resources and learning tools related to balloon usage and care. The company headquarters is located in 16474 Greeno Road, Fairhope, AL 36532-5528, United States. 11-50 Employees
Date of Breach2026-01-29
Discovery Date2026-02-14
RegionUS
Target Domainballoons.com
Business SectorConsumer Services
Severity
HIGH
Ransom Demand150000

Claim by medusa

Balloons.com is a wholesale distributor specializing in a wide range of balloon products including foil film, latex balloons, and balloon decoration kits. They cater to various themes, occasions, and licensed characters, offering items for both everyday events and special celebrations. Their services target individuals and businesses looking for party supplies, with a focus on DIY balloon decor and promotional products. Additionally, they provide customers with resources and learning tools related to balloon usage and care. The company headquarters is located in 16474 Greeno Road, Fairhope, AL 36532-5528, United States. 11-50 Employees

Posted by the medusa threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.

Sources

Victim website

balloons.com

Leak post (onion / Tor)

tor

http://xfv4jzckytb4g3ckwemcny3ihv4i5p4lqzdpi624cxisu35my5fwi5qd.onion/detail?id=2453bb987460459abf1c6602d86c6b54

Open this URL in Tor Browser. Browsing leak sites carries real risk — view passively, never click further.

Disclaimer

HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.