📢 Unlock Exclusive Cyber Threat Intelligence
Powered by DarkWebInformer.com
Get foundational access to breach intelligence — track breaches, leaks, and threats in real-time with unfiltered screenshots and expert summaries.
A threat actor using the alias mydocs is claiming to sell a massive dataset allegedly extracted from Hotel Ca’ dei Conti, a 4-star boutique hotel located in Venice, Italy. According to the listing, the dataset includes over 38,000 high-resolution scanned images of guest IDs and passports, obtained through unauthorized access in July 2025.
📸 Note: Select screenshots are shown in this post.
Full claim URLs and high-resolution, unredacted screenshots are available exclusively via the private threat feeds for paid subscribers.
👉 Subscribe
🧾 Key Details
Field | Information |
---|---|
Victim Country | Italy 🇮🇹 |
Industry | Hospitality & Tourism |
Victim | Hotel Ca’ dei Conti |
Website | cadeiconti.com |
Category | Data Breach |
Severity | Medium |
Threat Actor | mydocs |
Network | Open Web |
Claim URL | For Paid Subscribers |
🏨 Breach Overview
The actor claims the data was collected through the hotel’s KYC (Know Your Customer) check-in process. These files are organized by country of origin and provided in JPG format.
📂 Dataset Contents:
- 38,000+ scanned images of passports and national IDs
- Collected during hotel check-in procedures
- Files are high resolution, clear, and fully legible
- Allegedly ideal for identity fraud or synthetic identity creation
- Covers guests from Spain, France, Italy, and other nations
💸 Sale Information
Field | Details |
---|---|
Price | 20,000$ (Negotiable) |
Contact | Telegram: Redacted |
📸 Screenshot Previews



Unredacted screenshots and full image set are available to paid subscribers.
🧰 TTPs (MITRE Mapping)
Tactic | Technique ID | Technique Name |
---|---|---|
Initial Access | T1078 | Valid Accounts or Exploit Public-Facing Application |
Collection | T1119 | Automated Collection |
Exfiltration | T1041 | Exfiltration Over C2 Channel |
Impact | T1530 | Data from Information Repositories |
Note: TTPs inferred based on the described access method and nature of the data.
🧠 Final Thoughts
This incident highlights the widespread risk that hospitality providers face when storing sensitive guest identification documents. The volume, resolution, and clarity of the exposed data present a significant threat not only to individuals whose documents were stolen but also to financial institutions and KYC-dependent services globally.