Ransomware gang NightSpire claims Hyatt data breach

Deutsch

A ransomware group known as NightSpire has claimed responsibility for hacking into Hyatt's systems and stealing data. The group states it has obtained nearly 50GB of files from the hotel chain, which it plans to sell. This incident highlights ongoing cybersecurity threats to the hospitality sector.

The ransomware gang NightSpire announced on January 20, 2026, that it had infiltrated Hyatt's computer systems and extracted sensitive information. According to the group's statement, the breach resulted in the theft of almost 50GB of data, which NightSpire is now offering for sale on underground forums.

Hyatt, a major global hospitality company, has not yet issued an official response to the claim as of the publication date. Such ransomware attacks often involve demands for payment to prevent data leaks, though NightSpire's specific demands remain unclear from available details.

This event underscores the persistent vulnerability of large corporations to cyber threats, particularly in industries handling customer data. Previous incidents in the hospitality sector have led to significant disruptions and financial losses, prompting increased investments in cybersecurity measures.

Experts note that verifying such claims is crucial, as some groups exaggerate breaches for notoriety. However, the volume of data mentioned suggests a potentially serious compromise if confirmed.

Verwandte Artikel

Realistic illustration of a computer screen showing the VanHelsing ransomware attack targeting multiple operating systems, suitable for a cybersecurity news article.
Bild generiert von KI

VanHelsing ransomware RaaS targets multiple platforms

Von KI berichtet Bild generiert von KI

A new ransomware-as-a-service operation called VanHelsing emerged on March 7, 2025, quickly claiming at least three victims. It supports attacks on Windows, Linux, BSD, ARM, and ESXi systems, with affiliates retaining 80% of ransoms after a $5,000 deposit. The group prohibits targeting entities in the Commonwealth of Independent States.

Hackers steal millions of Pornhub users' data for extortion

Hackers have accessed and stolen personal information from millions of Pornhub users, aiming to use the data for extortion schemes. The incident was highlighted in a WIRED security news roundup.

Hackers extort French crypto firm Waltio after stealing user data

Von KI berichtet

Hackers have targeted Waltio, a French cryptocurrency accounting platform, demanding a ransom after stealing emails and tax reports from 50,000 customers. The company reported the incident on January 21, 2026, stating that no passwords or highly sensitive data were compromised. French authorities are now investigating the sophisticated cyberattack.

Technologie

Thousands of Korean Air employees exposed in Oracle breach

Asien

Suspected data breach affects 4.5 million Seoul bike share users

Politik

Congressional staff emails hacked in Salt Typhoon campaign

US cybersecurity professionals plead guilty to blackcat ransomware attacks

Two US-based cybersecurity professionals have pleaded guilty to participating in Blackcat ransomware attacks. Ryan Clifford Goldberg and Kevin Tyler Martin face potential years in prison for their involvement.

Coupang data breach spanned June to November

Von KI berichtet

A massive data breach at e-commerce giant Coupang exposed personal information of 33.7 million customers from June 24 to November 8. Officials revealed the attacker exploited the company's electronic signature key, prompting a thorough government investigation. The incident has heightened public concerns over South Korea's data protection capabilities.

Chinese hackers install backdoors via Cisco email zero-day

Cisco Talos has detailed how a Chinese-linked group is exploiting an unpatched zero-day in email security appliances since late November 2025, deploying backdoors and log-wiping tools for persistent access.

Sernac fordert Clínica Dávila nach massivem Datenleck zu Details auf

Von KI berichtet

Der chilenische Nationale Verbraucherdienst (Sernac) hat Clínica Dávila nach einem Cyberangriff, der etwa 250 Gigabyte sensibler Patientendaten preisgab, eine formelle Aufforderung gestellt. Die Behörde verlangt innerhalb von 10 Werktagen detaillierte Informationen zum Vorfall, der einer ausländischen Ransomware-Gruppe namens Devman zugeschrieben wird. Betroffene Daten umfassen klinische Aufzeichnungen, Diagnosen und Ergebnisse medizinischer Tests, wie HIV-Screenings.

Montag, 02. Februar 2026, 10:02 Uhr

Canada Computers reveals customer data breach

Freitag, 23. Januar 2026, 02:03 Uhr

Huge data leak exposes 149 million credentials without protection

Dienstag, 30. Dezember 2025, 07:58 Uhr

Hacker claims breach of Condé Nast user database

Sonntag, 28. Dezember 2025, 03:51 Uhr

Russian Networks Linked to Laundering of LastPass Breach's $35M in Stolen Crypto

Freitag, 26. Dezember 2025, 23:28 Uhr

Former Coinbase agent arrested in India over data breach

Donnerstag, 25. Dezember 2025, 10:53 Uhr

LastPass 2022 breach enables years of cryptocurrency thefts

Dienstag, 23. Dezember 2025, 15:18 Uhr

Nissan says Red Hat breach affected thousands of customers

Montag, 15. Dezember 2025, 19:00 Uhr

Data breach exposes credit card details of over 5.6 million people

Freitag, 12. Dezember 2025, 08:50 Uhr

Russian cybercriminals release new ransomware

Mittwoch, 10. Dezember 2025, 08:16 Uhr

Crypto's new rich seek privacy amid extortion threats

 

 

 

Diese Website verwendet Cookies

Wir verwenden Cookies für Analysen, um unsere Website zu verbessern. Lesen Sie unsere Datenschutzrichtlinie für weitere Informationen.
Ablehnen