25, February, 2024
HomeBusinessTaj Hotels Faces Data Breach, 1.5 Million Customers' Information Exposed

Taj Hotels Faces Data Breach, 1.5 Million Customers’ Information Exposed

Published on

In a concerning development, Tata-owned Taj Hotels group has fallen victim to a data breach, exposing the personal information of more than 1.5 million customers. The breach, orchestrated by a threat actor known as “Dnacookies,” involves a ransom demand of $5,000 (approximately Rs 4,16,000) for the complete dataset.

Read Also | Hotel Stocks Surge Ahead of ICC Men’s World Cup as Analysts Offer Positive Outlook

The compromised data reportedly includes addresses, membership IDs, mobile numbers, and other personally identifiable information, raising serious concerns about privacy.

A spokesperson for the Indian Hotels Company Ltd. (IHCL), the entity managing the Taj Group, acknowledged the situation, stating, “We have been made aware of someone claiming possession of a limited data customer data set, which is non-sensitive in nature.” Despite the claim of non-sensitivity, the breach poses a significant risk to the affected customers.

The bad actor asserted that the dataset spans from 2014 to 2020 and has not been disclosed previously. Hacker forums, as reported by Economic Times on November 5, have reviewed the breach post, which includes a sample featuring one thousand rows of unique entries.

IHCL has taken prompt action, stating, “We are investigating this claim and have notified the relevant authorities,” and emphasizing their commitment to monitoring systems closely. The breach has also caught the attention of the Indian Computer Emergency Response Team (CERT-In), which is actively investigating the matter to mitigate potential risks and assess the extent of the breach.

Dnacookies, the threat actor behind the breach, has outlined three specific demands, adding complexity to the situation. These demands include the requirement for a negotiable deal to involve a middleman, a strict stance against splitting the data (it must be all or nothing), and a refusal to provide additional samples of the compromised data.

Read Also | Aadhaar Data Leak: 7 Key Facts About the Exposure of Personal Information of 81.5 Crore Indians on the Dark Web

The ongoing investigation will play a crucial role in understanding the full impact of this security incident and implementing necessary measures to secure affected individuals’ information.

Latest articles

Lemon Magic – Creative Ways to Transform Used Citrus into Household Marvels

Lemons, with their invigorating aroma and tangy taste, are culinary companions that bring a...

Sageuk K-Dramas Demystified: Traditional vs. Fusion

Sageuks, a portmanteau of 'sa' (historical) and 'geuk' (drama), represent a captivating genre of...

Xiaomi 14 Ultra vs Samsung S24 Ultra: A Flagship Showdown

In the ongoing saga of flagship smartphones, the battle intensifies as Xiaomi's recently unveiled...

More like this

Cryptocurrency Market Snapshot: Bitcoin, Ethereum, and Top Tokens in Focus

In the dynamic world of cryptocurrencies, today's market trends paint a vivid picture of...

Vice Media and Engadget Navigate Media Evolution with Strategic Job Cuts

In a dynamic shift within the media industry, both Vice Media and Yahoo-operated Engadget...

Reddit Sets Sail for IPO with ‘RDDT’ Ticker on NYSE Amid User-Centric Approach

Reddit, the widely-used social media platform, is making waves as it gears up for...
Enable Notifications OK