Taj Hotels, a subsidiary of Indian Hotels Company Ltd (IHCL), recently experienced a significant cyber-attack that resulted in the compromise of personal details belonging to over 1.5 million customers. This breach exposed a range of sensitive information, including addresses, membership IDs, mobile numbers, and other Personal Identifiable Information (PII) spanning the period from 2014 to 2020.
The motive behind Taj Hotels, now owned by the Tata Group, holding such PII remains unclear. This is particularly noteworthy given the stringent guidelines from the Indian government, which explicitly state that businesses in the hospitality sector should not retain sensitive information such as dates of birth and banking details, including card information.
The Indian Computer Emergency Response Team (CERT-IN) has taken immediate action and is actively investigating the cyber breach. In response to the incident, IHCL has released a statement emphasizing its commitment to prioritizing the protection of customer details. To ensure a comprehensive investigation, the company has engaged forensic specialists to determine the extent of the breach.
One notable aspect of this cyber threat is the involvement of a threat actor known as “DNA Cookies.” This individual has demanded a ransom of $5000 for the release of the stolen data. What sets this demand apart is that the threat actor is requesting payment for the entire dataset, rather than providing a sample to verify the authenticity of the compromised information.
Complicating matters further, the cybercriminal has published a portion of the stolen data on BreachForums, a platform accessible exclusively through the dark web. In a peculiar twist, DNA Cookies has instructed Taj Hotels’ IT staff to initiate contact through a designated member on the forum, explicitly discouraging communication from external sources.
As the investigation unfolds, experts and customers alike eagerly await additional details regarding the scope and impact of this cyber-attack. The compromised information raises concerns about the potential misuse of personal data and the need for heightened cybersecurity measures in the hospitality sector.
Taj Hotels’ response to this incident highlights the importance of prioritizing customer data protection. The company’s swift action in engaging forensic specialists demonstrates its commitment to thoroughly investigating the breach and preventing future incidents.
Customers affected by the breach should remain vigilant and take necessary precautions to protect their personal information. This includes monitoring their financial accounts, being cautious of phishing attempts, and promptly reporting any suspicious activity to the relevant authorities.
While the motive behind this cyber-attack remains unclear, it serves as a stark reminder that businesses must remain vigilant in safeguarding customer data. The incident also underscores the need for robust cybersecurity measures, regular security audits, and employee training to mitigate the risk of future breaches.
As the investigation progresses, Taj Hotels and IHCL will continue to collaborate with law enforcement agencies and cybersecurity experts to ensure the responsible handling of the breach and the protection of their customers’ data.
