Another major corporation has suffered a data breach. The Radisson Hotel Group has revealed it suffered a breach of its Radisson Rewards loyalty programme.
The hotel chain claims that only a small percentage’ of Radisson Rewards account holders have been affected. Although the breach didn’t compromise any payment card or password information, among the data accessed are member’s names, address (including country of residence), email address and in some other cases, company names, phone numbers, Radisson Rewards member numbers, and any frequent flyer numbers on file.
In a statement by Radisson:
“Upon identifying this issue Radisson Rewards immediately revoked access to the unauthorized person(s). All impacted member accounts have been secured and flagged to monitor for any potential unauthorized behavior”. “Radisson Rewards takes this incident very seriously and is conducting an ongoing extensive investigation.”
Anyone potentially affected by the breach has been notified by email and were advised to change their passwords.
Though the breach was identified on October 1, it is unclear when the incident actually occurred. Some reports claim that it took place a few weeks back on September 11th. Like the British Airways breach earlier this year, this incident will be an early case study of the enforcement of GDPR fines and the measures that will be taken by regulators for future violations.