A threat actor on BreachForums Tuesday posted what appears to be a sample leak from an alleged data set of 160,000 plus records stolen from the famed Trump Hotels[.]com.
The alleged sample was posted on the hacker forum at about 4:00 am Eastern Time by a fairly unknown user, only active on Breached since last August, and who goes by the name FutureSeeker.
It appears that the hacker exposed details from the TrumpHotels e-mail notification system, “specifically, the service responsible for reminding and/or verifying reservation details for guests,” said malware repository vx-underground, who posted about the alleged leak on X.
The database leak post titled “trumphotels.com - invitations List” claims to have exfiltrated a total of 164,910 records from the site’s servers.
“Hello BreachForums Community, Today I have uploaded the Trump Hotel invitations for you to download, thanks for reading and enjoy!” Future Seeker posted with the sample.
Although Cybernews has not looked at the full set of records, the BreachForums sample shows full names, email addresses, creation_dates, and other sampling data and dates of communications.
According to vx-underground, Future Seeker is most likely trying to make a name for themselves on the shadowy marketplace.
“Based on review of the data we do not believe this compromise to be politically motivated or financially motivated. Rather, because of the recent inauguration of the United States president, we perceive this compromise as a way for the Threat Actor(s) to verify their legitimacy as a Threat Group and/or Actor,” it said in the post.
The malware collectors, who also appear to have viewed the entire data set on the anonymous publicdrop file sharing service BiteBlob, noted that stolen information “ranges from January 18th, 2018 to January 15th, 2025.”
Today a Threat Actor(s) operating under the moniker undefinedFutureSeekerundefined claimed to have compromised TrumpHotels-dot-com.
undefined vx-underground (@vxunderground) February 4, 2025
The Threat Actor(s) appear to have compromised TrumpHotels e-mail notification system. Specifically, the service responsible for reminding and/or verifying…
Vx-underground also said the data seemingly does not include any personally identifiable information (PII) of “guests present at the hotel(s) operated by the Trump organization,” such as reservation dates, check-ins, departures, financial info, etc.
Cybernews has reached out to the Trump Organization but has not heard at the time of this report. We will update the story if necessary.
In the run-up to the US presidential election in November 2024, Trump (and his campaign staff) had been the target of various nation-state hacker groups.
US intelligence agencies confirmed that Iran had orchestrated a cyberattack against Trump’s campaign in August of that year, attempting to pass the information off to the Biden/Harris camp, which reportedly did not respond.
Your email address will not be published. Required fields are markedmarked