The Taj Hotels group, owned by Tata, experienced a data breach that resulted in the exposure of over 1.5 million client records, says the latest news report.
A bad actor operating by the pseudonym “Dnacookies” allegedly requested $5,000 (about Rs 4.16 lakh) as ransom for the entire dataset, according to a news report. According to individuals close to the publication, it appears to contain addresses, membership IDs, mobile numbers, and other personally identifiable information.
A spokesperson for the Indian Hotels Company Ltd. (IHCL), said, “We have been made aware of someone claiming possession of a limited data customer data set, which is non-sensitive in nature,”
The bad actor stated that the data set, which hasn’t been made public yet, includes information from the years 2014 to 2020. The November 5 breach post on hacker forums has been examined by The Economic Times. Additionally, a sample with one thousand rows of unique entries was sent by the bad actor.
The IHCL spokesperson said the company is, “Investigating this claim and has notified the relevant authorities and continuing to monitor its systems.”