InterContinental Hotels Group (IHG) suffered a cyberattack on its subsidiary hotel chains. According to the post on London Stock Exchange, the hotel industry giant confirmed that their booking portal and IT structure were compromised by an unknown TA (Threat Actor), ceasing the hotel reservations portal.
The IHG technical team evaluated the cyberattack and its intent to harm the hotel chain. Per the reports, no customer data or confidential information was stolen, and the TA’s objective remains unclear. IHG has implemented its response plans, is notifying relevant regulatory authorities and is working closely with its technology suppliers,” read the company’s official statement addressing the cyber attack.
In an announcement, IHG shared that it would support the hotel owners impacted by the attack and allow direct bookings in reaction to the ongoing service disruption. Moreover, several cybersecurity firms have also proposed ideas and plans to help the organization identify the culprits, given the specifics and technologies needed by a business like IHG.
The cyberattack that hit the hotel systems is unknown, and the company has not yet verified who or what caused the attack. However, it happened just a few weeks after LockBit broke into a Holiday Inn in Istanbul. The stolen data was then made available for sale in public domains, and the threat actor asked for vast financial benefits in exchange.
According to security experts, every hotel site relies on a broader range of IT services, from payment booking to stock control. Since hotels have many departments that take aid from third-party members, the working atmosphere of hotels is complex, and each department uses its own set of protocols to contact and take services outside the organization.
Cybersecurity specialists have advised hotels to adopt basic security measures, such as ensuring staff only have the level of permissions or access needed to complete their work. User accounts are continuously reviewed and updated as staff join or leave the hotel.