December 2, 2023

One in all Europe’s largest lodge corporations mentioned it restricted a latest ransomware assault earlier than it might trigger severe injury.

Motel One Group — a German chain that operates 90 finances resorts in 13 nations — instructed Recorded Future Information that it was the goal of a cyberattack in latest weeks however didn’t say when the assault occurred.

“The unknown attackers have gained entry to inside methods of the lodge operator and tried to execute a so-called ransomware assault. Due to measures in place the influence could possibly be decreased to a minimal,” a spokesperson mentioned this weekend.

“The enterprise operation of one in every of Europe’s largest lodge teams was by no means in danger. As a part of the instant actions an authorized IT safety specialist was concerned, and we’re cooperating with public investigation and information safety authorities.”

The spokesperson added that an unknown variety of prospects had their tackle information accessed alongside particulars for 150 bank cards. All card holders affected by the assault had been knowledgeable.

The lodge didn’t reply to follow-up questions on claims made by the AlphV/Black Cat ransomware gang, which added the corporate to its leak web site on Saturday morning and mentioned it stole 6 TB of knowledge that included all reserving affirmation particulars from the final three years.

The hackers mentioned that along with buyer contact particulars, they obtained troves of inside paperwork.

The corporate launched a press assertion on Monday that mirrored a lot of what it instructed Recorded Future on Saturday. Positioned throughout Europe, the corporate opened its first lodge in New York Metropolis final 12 months.

The AlphV/Black Cat ransomware gang has been within the information in latest weeks over its assault on one other hospitality large — MGM Resorts. All the things from slot machines to restaurant administration methods was introduced down by the ransomware gang.

A number of studies in latest weeks have spotlighted a renewed focus by hackers on the hospitality business, which captures a wealth of non-public information about friends — the type that may be engaging to cybercrime gangs and nation-state spies alike.

A latest report from cybersecurity firm Trustwave on the hospitality business discovered at the least 59 ransomware assaults and that the highest assault methodology concerned credential entry.

This summer time, a Russia-based ransomware gang stole information from world lodge chain Radisson Lodges by means of a vulnerability in a preferred file sharing platform. In January, lodge large Hilton confirmed that some information was stolen from its methods.

Marriott mentioned final 12 months that hackers tried to extort the corporate after 20 GB of worker and buyer information was stolen from BWI Airport Marriott in Baltimore. Marriott has confronted a number of breaches during the last 10 years.

Probably the most notable hospitality assault was a 2014 breach involving the private data of 500 million lodge friends. The corporate is within the midst of one of many largest-ever class-action lawsuits due to the breach.

Meliá Lodges Worldwide, one of many largest lodge chains on this planet, noticed its operations crippled by a cyberattack in 2021.

State-sponsored cyber-espionage teams like DarkHotel, APT28 and the Rana Group concentrate on cyberattacks focusing on resorts and the world over.

One group, nicknamed FamousSparrow by researchers, was implicated in assaults on resorts in France, Lithuania, the U.Ok. Israel, Saudi Arabia, Brazil, Canada, Guatemala, Taiwan and Burkina Faso.

Get extra insights with the

Recorded Future

Intelligence Cloud.

Study extra.

No earlier article

No new articles

Jonathan Greig

Jonathan Greig is a Breaking Information Reporter at Recorded Future Information. Jonathan has labored throughout the globe as a journalist since 2014. Earlier than transferring again to New York Metropolis, he labored for information shops in South Africa, Jordan and Cambodia. He beforehand coated cybersecurity at ZDNet and TechRepublic.