The Motel One Group has introduced that it has been focused by ransomware actors who managed to steal some buyer information, together with the main points of 150 bank cards.
Motel One is a low-budget lodge chain that operates over ninety resorts with 25,000 rooms in Germany, Austria, the UK, Denmark, Belgium, the Netherlands, Spain, Poland, the Czech Republic, and america.
In accordance with the corporate’s press launch, a gaggle of unknown attackers infiltrated its community, meaning to launch a ransomware assault, however had restricted success due to its efficient protecting measures.
“The at present unknown perpetrators infiltrated the lodge operator’s inside programs and almost certainly tried to hold out a so-called ransomware assault,” reads the press launch.
“Due to intensive measures, the affect was saved to a relative minimal. The enterprise operation of certainly one of Europe’s largest lodge teams was by no means in danger.”
The corporate instantly engaged with IT consultants to research and remediate the incident, whereas the involved information safety authorities had been additionally notified accordingly.
The primary outcomes of the investigation point out that the hackers stole buyer addresses, together with the main points of 150 bank cards. The house owners of these playing cards have been knowledgeable by way of customized notices.
BlackCat claims the assault
The lodge’s claims about restricted affect are instantly countered by the menace actors who took accountability for the assault, the BlackCat/ALPHV ransomware gang.
The menace group added Motel One to its extortion web site on the darkish net on September 30, 2023, claiming to have stolen almost 24.5 million recordsdata, totaling 6 TB of dimension.
“[The stolen data] embrace PDF & RTF reserving confirmations for the previous 3 years containing names, addresses, dates of reservation, cost methodology, and phone info,” reads BlackCat’s announcement.
“Moreover, there’s a important quantity of your clients’ bank card information and inside firm paperwork, which undoubtedly maintain delicate info.”
BlackCat has given Motel One 5 days to barter the ransom cost with them; in any other case, they threaten to leak all the information they stole from the lodge’s computer systems.
BleepingComputer has contacted Motel One to request extra details about the assault and whether or not or not ALPHV’s public disclosure has compelled the agency to revisit its findings, however we now have but to listen to again.