From their press release, issued yesterday:
Atrium Hospitality, the hotel and assessment for the Holiday Inn Sacramento, is notifying three hundred and seventy-six (376) hotel guests of an event that could potentially impact the security of certain information. Although we are unaware of any actual or attempted misuse of the information, Atrium Hospitality is providing potentially impacted guests with information about the event, steps taken since discovering the event, and what can be done to better protect against potential harm resulting from this event.
On December 8, 2017, Atrium Hospitality discovered that a workstation at the Holiday Inn Sacramento was potentially impacted by ransomware. Atrium Hospitality immediately removed the workstation from its network and commenced an investigation, with the assistance of a third-party forensic investigation firm, to determine what happened. As part of the investigation, Atrium Hospitality determined that the malware had potentially malicious capabilities.
On February 14, 2018, Atrium Hospitality determined that one or more of the following for three hundred and seventy-six (376) hotel guests was potentially accessible: name, driver’s license number, passport number, and credit or debit card information. Atrium will notify one hundred and eighty-two (182) of the affected guests by U.S. Mail. Atrium did not have address for the remaining one hundred and ninety-four (194) guests.
Atrium Hospitality is mailing letters to the impacted guests. Atrium Hospitality is also disclosing this incident to certain state regulators as required.
Atrium Hospitality is unaware of any actual or attempted misuse of the information, and emphasizes that it cannot confirm whether the information was actually accessed. Nevertheless, Atrium Hospitality encourages the impacted guests to review financial statements, monitor credit reports, and to immediately report all suspicious activity to the institution that issued the record.
SOURCE Atrium Hospitality
via PRNewswire