The ALPHV/BlackCat ransomware gang, known for its recent attacks on MGM and Caesars Las Vegas resorts, has struck again, targeting LBA Hospitality, a US hotel management group responsible for overseeing nearly 100 hotels under major chains like Marriott, Hilton, Holiday Inn, and Best Western. These hotels are predominantly located in the southeastern US. ALPHV/BlackCat posted evidence of the breach on its dark leak site, asserting that it has exfiltrated approximately 200GB of highly confidential data, including client and employee information, financial records, and personal identification details.
LBA Hospitality has not yet officially confirmed the breach’s timing or extent, but experts are alarmed given the nature of the data they manage, including human resources, accounting, and sensitive client information.
Furthermore, the ransomware group has given LBA Hospitality a three-day ultimatum to respond; otherwise, they threaten to publish the stolen data, including citizens’ confidential documents. This incident has raised concerns for the hotel management group and its partner chains, such as Marriott and Hilton, both of which have experienced data breaches in recent years, adding to the growing list of cybersecurity challenges faced by the hospitality industry.
The sample data posted on the ALPHV/BlackCat leak site includes individual IDs, confidentiality agreements, and mundane documents, underlining the potential threat to personal information. LBA Hospitality’s multiple service offerings suggest that significant sensitive data could be at risk due to this breach, requiring immediate and thorough investigation to mitigate potential damage.