Country Inn & Suites by Radisson Hit by Ransomware Attack, Guest Data Compromised
The Country Inn & Suites by Radisson hotel chain has fallen victim to a ransomware attack, with hackers claiming to have accessed sensitive information of thousands of guests. The Everest ransomware group took responsibility for the breach, stating that they have stolen “thousands and thousands of client’s personal information.” The group has threatened to publish the data on their leak site if their ransom demands are not met within the next ten days.
The mid-scale hotel chain, with over 530 locations in the US, Canada, Latin America, the Caribbean, and the Asia Pacific, is now facing a critical situation as the hackers threaten to expose credit card numbers, account usernames, and passwords of guests. The Everest gang has not disclosed the exact ransom amount but has shared sample screenshots of the stolen data, including billing information, credit card details, and internal emails.
This is not the first time a hotel chain has been targeted by ransomware. In 2023, Radisson Hotels Americas, a division of Radisson Hotel Group, was attacked by the Cl0P ransomware gang. The entire Radisson Hotel Group was acquired by Choice Hotels in 2022 for $675 million. The Everest cybercriminal gang, believed to be linked to the Black-Byte ransomware operations, has a history of targeting high-profile organizations and government entities, including AT&T and the Brazilian government.
As the hotel industry grapples with the growing threat of cyberattacks, guests are advised to monitor their financial accounts closely and take necessary precautions to protect their personal information. Choice Hotels has yet to release an official statement regarding the ransomware attack on the Country Inn & Suites by Radisson chain.