Hotel chain giant Omni Hotels & Resorts recently suffered a cyberattack that resulted in the theft of customer information. The company confirmed that personal details, including names, email addresses, postal addresses, and guest loyalty program information, were compromised. However, financial information and Social Security numbers were not affected.
The attack occurred last month when Omni Hotels & Resorts identified intruders in its systems and subsequently shut down its systems on March 29. This led to widespread outages across the hotel chain’s properties, with guests experiencing issues such as phone and Wi-Fi outages, as well as problems with their room keys. The company was able to restore its systems a week later on April 8.
The cyberattack was attributed to a ransomware gang known as Daixin. The gang claimed responsibility for the breach on its dark web site, where it typically publishes stolen information to extort a ransom from its victims. Daixin stated that it would leak customer records dating back to 2017, although they did not provide evidence of their claims. However, portions of the allegedly stolen files were shared with DataBreaches.net, a trusted source for data breach information. The shared data matched the types of personal information that Omni Hotels & Resorts reported as stolen.
It is worth noting that Daixin has been the subject of a public advisory by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) since October. The ransomware crew has been targeting businesses across the U.S., including healthcare organizations. Daixin has previously claimed responsibility for cyberattacks on hospitals and medical facilities.
The breach at Omni Hotels & Resorts highlights the ongoing threat posed by ransomware attacks and the importance of robust cybersecurity measures. Cybercriminals continue to target organizations of all sizes, seeking to exploit vulnerabilities in their systems and gain access to sensitive data. This incident serves as a reminder for companies to prioritize cybersecurity and implement effective measures to protect customer information.
Omni Hotels & Resorts has not provided further comments on the cyberattack. However, it is crucial for affected customers to remain vigilant, monitor their accounts for any suspicious activity, and consider taking steps to protect their personal information, such as changing passwords and enabling two-factor authentication.
If you have any information about the Sisense breach or wish to report any cybersecurity incidents, you can contact the reporter via Signal, WhatsApp, or email. SecureDrop can also be used to send files and documents securely.
