All ransomware incidents
Ransomware group thegentlemen hits National Museum
National Museum — a public sector target operating in DK has been listed by the thegentlemen ransomware group on 2026-06-15. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.
Incident Report
| Target Organization | National Museum |
|---|---|
| Threat Group | thegentlemen |
| Summary | ***.dk zoominfo.com/c/national-museum/372526094 The National Museum of Denmark, located in the heart of Copenhagen, is the country's premier institution for cultural history, spanning from the Stone Age to the present day. It houses world-renowned archaeological treasures—including Viking hoards, the ancient Sun Chariot, and the Egtved Girl—alongside extensive global ethnographic collections. The museum is dedicated to exploring and sharing Denmark's rich heritage and global human history through engaging, research-driven exhibitions |
| Date of Breach | 2026-06-15 |
| Discovery Date | 2026-06-15 |
| Region | DK |
| Target Domain | natmus.dk |
| Business Sector | Public Sector |
| Severity | MEDIUM |
Claim by thegentlemen
***.dk zoominfo.com/c/national-museum/372526094 The National Museum of Denmark, located in the heart of Copenhagen, is the country's premier institution for cultural history, spanning from the Stone Age to the present day. It houses world-renowned archaeological treasures—including Viking hoards, the ancient Sun Chariot, and the Egtved Girl—alongside extensive global ethnographic collections. The museum is dedicated to exploring and sharing Denmark's rich heritage and global human history through engaging, research-driven exhibitions
Posted by the thegentlemen threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.
Sources
Disclaimer
HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.