HackerFeeds
All ransomware incidents
nkartravelhouse.com

Ransomware group payload hits NKAR Travels & Tours

MEDIUM
·Hospitality and Tourism·LK·2026-03-30

NKAR Travels & Tours — a hospitality and tourism target operating in LK has been listed by the payload ransomware group on 2026-03-30. The information below reflects what the threat actor has publicly claimed on their leak site; the details have not been independently verified.

Incident Report

Target OrganizationNKAR Travels & Tours
Threat Group
payload
SummaryNKAR Travel House is a premier travel agency in Sri Lanka, offering a diverse range of carefully curated tours and travel packages tailored to various interests. Their services include classical, cultural, wildlife, wedding, and experiential tours, as well as luxury options and tailor-made experiences. The agency aims to provide guests with unforgettable journeys through Sri Lanka's rich heritage, stunning landscapes, and vibrant culture.
Date of Breach2026-03-30
Discovery Date2026-03-30
RegionLK
Target Domainnkartravelhouse.com
Business SectorHospitality and Tourism
Severity
MEDIUM
Data Size60 GB

Claim by payload

NKAR Travel House is a premier travel agency in Sri Lanka, offering a diverse range of carefully curated tours and travel packages tailored to various interests. Their services include classical, cultural, wildlife, wedding, and experiential tours, as well as luxury options and tailor-made experiences. The agency aims to provide guests with unforgettable journeys through Sri Lanka's rich heritage, stunning landscapes, and vibrant culture.

Posted by the payload threat actor on its public leak site. This is the group's own statement and has not been independently verified by HackerFeeds.

Sources

Victim website

nkartravelhouse.com

Leak post (onion / Tor)

tor

http://payloadrz5yw227brtbvdqpnlhq3rdcdekdnn3rgucbcdeawq2v6vuyd.onion/posts/874b97ab-cc25-48e1-88be-d50088ebb288

Open this URL in Tor Browser. Browsing leak sites carries real risk — view passively, never click further.

Disclaimer

HackerFeeds does not engage in the exfiltration, downloading, taking, hosting, viewing, reposting, or disclosure of any stolen information. All breach data reported here is sourced from publicly available threat intelligence feeds for awareness purposes only.