When did the K Club ransomware attack occur?

The attack occurred just days before the Irish Open golf championship. Investigators believe the attackers gained access to the resort's IT network approximately one month prior to the tournament, and some of the stolen data was uploaded to the darknet on Tuesday, September 2nd.

Which ransomware group was responsible for the K Club attack?

The SafePay ransomware gang claimed responsibility for the cyberattack on the K Club resort.

What type of data was exposed in the K Club breach?

The exposed data includes financial records and documentation, IT system documentation and configurations, and administrative information and internal records.

What was the impact of the ransomware attack on the K Club?

The cyberattack resulted in significant disruption to the resort's IT infrastructure. The SafePay ransomware group stole and encrypted large volumes of data before deploying the ransomware.

When was the stolen K Club data leaked online?

Some of the stolen data was uploaded to the darknet on Tuesday, September 2nd, following the ransomware attack.

How did Irish authorities discover the K Club attack?

The Irish police (Garda) became aware of the attack through their digital intelligence monitoring systems, which scan darknet platforms for threats against Irish organizations and state infrastructure.

What is the K Club resort known for?

The K Club is a prestigious resort located in County Kildare, Ireland, and was hosting the Irish Open golf championship just days after the ransomware attack occurred.

Incident

K Club golf resort hit by ransomware attack just before Irish Open championship

Q: Was guest information compromised in the K Club attack?

The K Club claims that no guest or client personal information was accessed during the incident.

Q: How did the K Club respond to the ransomware attack?

The K Club has confirmed experiencing a 'cyber-incident' affecting its IT infrastructure but declined to provide specific details about the attack or whether ransom payments were made to the attackers.

published: Sept. 7, 2025

Learn More

The prestigious K Club resort in County Kildare, Ireland, fell victim to a ransomware attack claimed out by the SafePay ransomware gang just days before hosting the Irish Open golf championship. The cyberattack resulted in significant disruption to the resort's IT infrastructure and led to the theft and leak of organizational data on the dark web.

Investigators believe the attackers gained access to the resort's IT network through a vulnerability in its virtual private network (VPN) system approximately one month prior to the tournament. The SafePay ransomware group then stole and encrypted large volumes of data before deploying. Some of the stolen data was uploaded to the darknet on Tuesday 2nd of September.

Exposed Data includes:

Financial records and documentation
IT system documentation and configurations
Administrative information and internal records

The K Club has confirmed experiencing a "cyber-incident" affecting its IT infrastructure but declined to provide specific details about the attack or whether ransom payments were made to the attackers. The resort claims that no guest or client personal information was accessed during the incident.

The Data Protection Commission (DPC) has been formally notified of the incident and has opened an inquiry into the breach. The Irish police (Garda) became aware of the attack through their digital intelligence monitoring systems, which scans darknet platforms for threats against Irish organizations and state infrastructure.

K Club golf resort hit by ransomware attack just before Irish Open championship

Read More
Ganong Bros. reports cybersecurity incident, operations disrupted
CannonDesign reports ransomware attack, data breach
Microlise reports cyberattack, data breach
Fauquier school district suffers ransomware attack, remains operational
Chilean telecom GTD reports ransomware attack by the …