Dominican Tourism Police Hit by Krybit Ransomware
POLITUR (Central Directorate of Tourism Police, also known as CESTUR), the Dominican Republic government agency responsible for tourism security, was claimed by the Krybit ransomware group. The listing appeared on June 25 with an estimated attack date the same day. Hudson Rock detected related infostealer activity involving 7 compromised users and Microsoft 365 access.
- credentials
- internal-data
The Dominican Republic’s tourism police agency, POLITUR, was hit by the Krybit ransomware group, with the claim posted on a leak site on June 25, 2026. The breach exposed credentials and internal data belonging to an unknown number of users. Hudson Rock also reported related infostealer activity that compromised seven accounts with Microsoft 365 access tied to the agency’s domain.
Public reporting from ransomware tracking sites confirms that the Central Directorate of Tourism Police, also known as CESTUR, appeared on the Krybit leak page the same day the attack is believed to have occurred. The data includes login credentials and internal documents. Hudson Rock’s telemetry separately flagged infostealer malware harvesting credentials from seven users at politur.gob.do, granting access to Microsoft 365 accounts. Exact volume of records exposed remains unclear, and the agency has not yet issued a public statement detailing the full scope.
Want the rest of this breakdown?
Sign up free to keep reading. Members get extended access, the weekly breach digest, and a complimentary Warden™ to see if their identity is exposed in the breaches we cover.
A breach leaks your credentials. Then hackers chain those credentials to your address, family, phone, and employer using public broker sites. We’re the only tool built around that chain.
⚠ Were you in this breach?
Free email scanner. We check your address against 15.4B+ leaked records in 15 seconds — then show you the $19 cleanup that removes you from the broker sites aggregating leaked data.
Check my email — free →