Indian Hotels, parent company of the prestigious Taj Hotels chain, is currently conducting an investigation following a criminal’s assertion of having pilfered sensitive data belonging to 1.5 million customers. The individual, using the alias “dnacookes,” proclaimed this act on the BreachForums cybercrime platform, stating that the stolen data, collected between 2014 and 2020, includes personal details like names, email addresses, phone numbers, birthdates, and addresses.
This revelation has raised significant concerns about potential security vulnerabilities within Indian Hotels‘ systems and has prompted the company to pursue an in-depth inquiry into the alleged data theft. Operating under Indian Hotels Company Limited (IHCL), the brand manages a portfolio of 263 hotels, not limited to Taj but also encompassing SeleQtions, Vivanta, and Ginger. Despite reporting an 18% increase in revenue, reaching $359 million for the first half of the year, the recent data breach claim has put a spotlight on the vulnerability of hospitality giants to cyber threats. An IHCL spokesperson informed Information Security Media Group that they are actively investigating the claims made by the criminal and are collaborating with law enforcement agencies. However, the company has yet to confirm the veracity of the breach or ascertain if the compromised information originated from a third-party breach.
This incident underscores the persistent targeting of the hospitality industry by cybercriminals due to the wealth of valuable data stored by hotels, including personal information and payment card details. Recent breaches at luxury resorts and major hotel chains, including Marina Bay Sands and MGM Resorts, signify the ongoing challenge faced by the sector. With attacks leading to substantial financial losses and operational disruptions, the Indian Hotels data breach serves as a stark reminder of the critical need for robust cybersecurity measures within the hospitality industry to safeguard customer information and ensure the resilience of their systems against evolving cyber threats.
Read more:
