Gelatissimo Faces Data Breach from Ransomware Group Dragonforce

Gelatissimo Faces Data Breach from Ransomware Group Dragonforce

First seen 28 Apr 2026, 08:03 UTC Ia.Acs.AuInsurancebusinessmag 91% similarity 66.0

Article Content

Browse articles
ThreatCluster

Gelatissimo, an Australian gelato franchiser, is under threat from the ransomware group Dragonforce, which claims to have stolen 352.42 gigabytes of sensitive employee data. The hackers have provided sample screenshots of the compromised data, which includes names, payment details, tax file numbers, and personal information from visa applications. The breach affects both Australian and international operations, including corporate staff in the Philippines. Gelatissimo has less than five days to respond to the hackers. The incident highlights the risks associated with sensitive employee data, particularly for junior staff who may lack resources to mitigate misuse. Experts warn that the leaked information could facilitate targeted scams and impersonation attacks. Gelatissimo has not yet issued a public statement regarding the breach.

Key Points: • Dragonforce claims to have stolen 352.42 GB of sensitive employee data from Gelatissimo. • The leaked data includes personal details such as tax file numbers and visa application information. • Gelatissimo has a limited timeframe to respond to the ransomware group's demands.

ThreatCluster AI

Timeline

2026-04-25
Dragonforce published Gelatissimo's data on dark web leak site.
2026-04-28
Gelatissimo contacted for comment but did not respond.
2026-04-28
Experts warn about potential exploitation of leaked employee data.

Community

Browse all →