Omni Hotels Affirms Data Breach in Suspected Ransomware Incident
Omni Hotels & Resorts Confirms Data Breach in Recent Cyberattack
Omni Hotels & Resorts Confirms Data Breach in Cyberattack
Omni Hotels & Resorts has confirmed that a limited amount of data was compromised in a cyberattack on its systems that took place on March 29, Good Friday. In a statement on its website, the hotel chain revealed that the impacted data may include customer names, email and mailing addresses, as well as select guest loyalty program information.
However, Omni emphasized that sensitive information such as personal payment details, financial information, or Social Security numbers were not included in the compromised data. This news comes amidst reports that ransomware gangs are increasingly targeting hospitality groups, putting pressure on victims to pay large ransoms to recover their systems.
Security Week reported that the Daixin Team ransomware group recently added Omni to its leak site, claiming to have stolen records dating back to 2017. The group reportedly demanded a $3.5 million ransom, which was later reduced to $2 million during negotiations. It remains unclear whether Omni paid the ransom, as the hotel chain made no mention of ransomware groups or negotiations in its recent statement.
Experts suggest that Omni likely has good backups in place, as evidenced by the reduced ransom demand and the restoration of their systems. Additionally, the hotel chain’s credit card data is likely protected through encryption based on PCI requirements.
Darren Guccione, co-founder and CEO of Keeper Security, highlighted the challenges organizations face in responding to cyberattacks while managing reputational damage, legal obligations, and customer trust. The incident underscores the importance of organizations taking a cautious approach to cybersecurity to mitigate the impact on customer loyalty and brand image.
As the situation continues to unfold, Omni Hotels & Resorts will need to navigate the complexities of addressing the breach internally and publicly to ensure the security of their systems and maintain customer trust.
