Portland hotel and brewpub chain McMenamins suffered a ransomware attack that disrupted the company's operations and accessed some of its employee records.
- McMenamins suffered a ransomware attack on Sunday, December 12.
- The company warned its employees that much of their personal data, including addresses, social security numbers, and bank account numbers stored in its systems, might be compromised.
Portland hotel and brewpub chain McMenamins suffered a ransomware attack that disrupted the company's operations and accessed some of its employee records.
The ransomware attack occurred on December 12, by the Conti ransomware gang and the severity of the attack is still unknown.
According to employees, a message popped up on McMenamin's point of sale computer from the ransomware company, which reads: “All of your files are currently encrypted by CONTI strain. As you know...all of the data that has been encrypted by our software cannot be recovered by any means without contacting our team directly. If you try to use any additional recovery software - the files might be damaged, so if you are willing to try it—try it on the data of the lowest value.”
Even though the attack did not cause the location to close, McMenamins was forced to shut down their IT systems, corporate email and credit card point-of-sale to prevent the further spread of the attack.
McMenamins are being forced to alter its payment processing at some locations, as credit card scanners have been taken down. It takes hotel reservations by phone but can’t quote room prices or book specific room types. These intrusions also prevent customers from purchasing or redeeming gift cards.
McMenamins said they are working with the FBI and a third-party cybersecurity firm to investigate the attack.
McMenamins is offering all employees an identity and credit card protection service.
Conti ransomware operation is believed to be operated by a Russian hacking group, which emerged in 2020.
Conti has previously breached organisations such as Broward County Public schools, Ireland’s Health Service Executive, JVCKenwood and Sangoma.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?