On September 11, 2025, The Moinian Group, a major U.S. real estate firm managing office buildings, hotels, retail spaces, and residential properties, fell victim to a ransomware attack by the cybercriminal group Abyss. The attackers exfiltrated 4.7 terabytes of uncompressed data, including personally identifiable information (PII) such as names, addresses, Social Security numbers, financial records, lease agreements, and confidential business documents. The breach potentially affects clients, tenants, employees, and business partners, though the exact number of impacted individuals remains undisclosed.The ransomware group threatened to leak or sell the stolen data unless their demands were met. The Moinian Group has not issued a public response but is likely collaborating with cybersecurity experts to assess the damage and comply with state and federal disclosure requirements. The incident was first disclosed on the dark web via Abyss’s Tor-based leak site, raising concerns over identity theft, financial fraud, and reputational harm. Affected individuals are advised to monitor financial accounts, place fraud alerts, and remain vigilant against phishing attempts.
Source: https://www.claimdepot.com/data-breach/the-moinian-group-2025
TPRM report: https://www.rankiteo.com/company/the-moinian-group
"id": "the1232412091725",
"linkid": "the-moinian-group",
"type": "Ransomware",
"date": "9/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'customers_affected': 'unknown (potentially clients, '
'tenants, employees, business '
'partners)',
'industry': 'real estate (office buildings, hotels, '
'retail spaces, condominiums, rental '
'apartments)',
'location': 'United States (multiple cities)',
'name': 'The Moinian Group',
'type': 'private company'}],
'customer_advisories': ['Carefully review any notice or communication from '
'The Moinian Group or associated businesses.',
'Guidance provided for monitoring financial accounts '
'and credit reports.'],
'data_breach': {'data_exfiltration': '4.7 terabytes (uncompressed)',
'personally_identifiable_information': True,
'sensitivity_of_data': 'high (includes SSNs, financial '
'records, and confidential documents)',
'type_of_data_compromised': ['personally identifiable '
'information (PII)',
'financial records',
'lease agreements',
'confidential business '
'documents']},
'date_publicly_disclosed': '2025-09-11',
'description': 'On Sept. 11, 2025, The Moinian Group was listed as a victim '
'of a ransomware attack by the cybercriminal group Abyss. The '
'threat actors claimed responsibility for stealing 4.7 '
'terabytes of uncompressed data from the company, including '
'personally identifiable information (PII) such as names, '
'addresses, contact details, Social Security numbers, '
'financial records, lease agreements, and confidential '
'business documents. The incident was first disclosed on the '
"dark web via Abyss's Tor-based leak site. The group "
'threatened to leak or sell the data if ransom demands were '
'not met.',
'impact': {'brand_reputation_impact': 'potential (due to data exposure and '
'dark web disclosure)',
'data_compromised': ['personally identifiable information (PII)',
'names',
'addresses',
'contact details',
'Social Security numbers',
'financial records',
'lease agreements',
'confidential business documents'],
'identity_theft_risk': 'high (due to PII exposure)',
'legal_liabilities': 'potential (state and federal disclosures '
'required)'},
'initial_access_broker': {'data_sold_on_dark_web': 'threatened (if ransom '
'unpaid)'},
'investigation_status': 'ongoing (no public details released)',
'motivation': 'financial (ransom demand)',
'ransomware': {'data_exfiltration': '4.7 terabytes'},
'recommendations': ['Monitor financial accounts and credit reports for signs '
'of identity theft.',
'Consider placing fraud alerts or credit freezes with '
'major credit bureaus.',
'Be cautious of unsolicited emails or phone calls '
'requesting personal information.',
'Review any notices from The Moinian Group or associated '
'businesses.'],
'references': [{'date_accessed': '2025-09-11',
'source': 'Dark Web (Abyss Tor-based leak site)'},
{'source': 'The Moinian Group Official Website',
'url': 'https://www.moinian.com'}],
'regulatory_compliance': {'regulatory_notifications': 'planned (state and '
'federal disclosures)'},
'response': {'communication_strategy': 'pending (no public statement yet; '
'future disclosures planned)',
'incident_response_plan_activated': 'likely (working with '
'cybersecurity experts)',
'third_party_assistance': 'likely (cybersecurity experts '
'engaged)'},
'threat_actor': 'Abyss',
'title': 'Ransomware Attack on The Moinian Group by Abyss',
'type': 'ransomware'}