GoHighLevel
nightspireThis record tracks a ransomware attack claimed by the nightspire group against GoHighLevel. It collects the publicly disclosed attack details — sector, location and timeline — as published on the operator's leak site and indexed by Breach House.
Window Zero
EXPOSURE GAPWindow Zero is the time the breach stayed in the open before anyone said so — the gap between when the attack was first discovered on the operator's leak site (t1) and when it was publicly disclosed (t2). The wider this window, the longer victims, staff and customers were exposed with no warning.
Attack Summary
GoHighLevel, also known as HighLevel, is a Dallas, Texas-based software company in the Other sector that offers an all-in-one sales and marketing platform for agencies and businesses. Its platform combines CRM, landing pages, forms, calendars, marketing automation, email and SMS messaging, and white-label resale features under one system. The company presents itself as a tool for agencies to capture leads, automate follow-up, and manage client workflows from a single dashboard. It was listed as a ransomware victim associated with nightspire.
Leak Screenshots
SAMPLEProof-of-breach screenshots the operator posted from the stolen data. Previews are redacted and locked — the originals are available on HaveIBeenRansom.