On Monday 6th of December 2021, Nordic Choice Hotels have disclosed they had experienced a ransomware attack on Thursday 2nd of December 2021 which impacted the IT systems that handle reservations, payments, check-in, check-out and creation of new room keys. Because of the incident, the staff had to switch to manual procedures to carry out business operations.
“Our investigations do not currently give any indication that data has been leaked, but we can not guarantee it. Therefore, the incident entails a risk that information about your reservations and stays at our hotels may have gone astray.” – Nordic Choice Hotels.
Currently, Nordic Choice Hotels’s investigations have not found any evidence of passwords or payment information from guests or members being leaked but it is believed there is a possibility that information used to conduct guest bookings (e.g., emails, names, telephone numbers, etc) may have stolen and possibly leaked. They have confirmed that the incident has been reported to the police, the Norwegian Data Protection Authority and the National Security Authority on 2nd of December 2021.
“This information consists of name, email address, telephone number, date of the visit and any information the guest may have provided in connection with their visit. There is no indication that card or payment information has been leaked.” – Nordic Choice Hotels
Nordic Choice Hotels has also confirmed that the ransomware gang is responsible for the incident was “Conti” but they have not contacted Conti and they haven’t received a ransom demand yet from Conti.
© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.