The hacking group Desorden reportedly hacked a group of luxury hotels again after a deal to pay a ransom of $ 900,000 failed.
The hacking group said it met all of the hotel’s requirements, including providing samples of each stolen database, before management went out of business on Tuesday.
The Desorden hacking group claimed to have entered the hotels again within 10 minutes and exfiltrated 400 GB of files, including personal and company information.
The Chirathivat family, valued at $ 11.6 billion, owns the Central Group, which operates Centara Hotels & Resorts, which were affected by the data breach.
Desorden reportedly crashed Centara Hotels servers in the second data breach
Thirayuth Chirathivat, CEO of Centara Hotels & Resorts, said he learned of the first data breach that affected “a limited portion of our network” on October 14th.
He admitted that the hackers accessed some customer data, but not credit card and financial information. The company added that it has opened an investigation into the data breach and will provide more information as it becomes available.
disturbance said DataBreaches.net that the hotel began data recovery efforts and negotiations on October 16 and recovered some of the data on October 17.
However, the hacking group claims to have broken into the servers again within 10 minutes to prove they still had access. It also mocked the “reputable advisor” the Centara Hotels hired after the first data breach.
“Serious advisors, we leave it to the public to think about it,” said the group.
Desorden claims to have exfiltrated hundreds of gigabytes that affected millions of customers worldwide after the hotel’s entire network was compromised. The group did not disclose whether the incident was a ransomware attack.
“We basically shut down your entire backend, which consists of 5 servers,” claims Desorden. “In total, over 400 GB of files and data were stolen over a period of 10 days.”
“Luxurious first-class hotel guests” uncovered in Centara Hotels’ second data breach
According to Desorden, the data breach affected millions of customers from all countries who stayed in over 70 luxury hotels operated by the Central Group between 2003 and 2021. Including “luxury first-class hotel guests” and customers who had booked in advance in 2021.
The group said the data stolen includes name, passport number, ID number, phone, email, the residence of some hotel guests, their booking information including check-in and departure times, and other details. It also claims to have accessed “all financial data, company data, employee data” and other details.
In addition, Desorden claims to have hacked other Central Group-led companies and will disclose the stolen data shortly.
At the beginning of October, Desorden assumed responsibility for the hacking attack on the Central Restaurants Group in Thailand, which is part of the Central Group.
Previously, the group had assumed responsibility for the hacking of Acer India and the leakage of more than 60 GB of customer information on the Internet. Desorden then hacked Acer Taiwan after warning that the company has poor cybersecurity practices and has additional vulnerable servers in Indonesia and Malaysia.
Desorden develops a pattern that consists of taunting the victim and apparently performing follow-up attacks to make a point. However, the success of the initial and follow-up attacks appears to bolster Desorden’s credibility.
