Ransomware gang NightSpire claims Hyatt data breach

Suomi

A ransomware group known as NightSpire has claimed responsibility for hacking into Hyatt's systems and stealing data. The group states it has obtained nearly 50GB of files from the hotel chain, which it plans to sell. This incident highlights ongoing cybersecurity threats to the hospitality sector.

The ransomware gang NightSpire announced on January 20, 2026, that it had infiltrated Hyatt's computer systems and extracted sensitive information. According to the group's statement, the breach resulted in the theft of almost 50GB of data, which NightSpire is now offering for sale on underground forums.

Hyatt, a major global hospitality company, has not yet issued an official response to the claim as of the publication date. Such ransomware attacks often involve demands for payment to prevent data leaks, though NightSpire's specific demands remain unclear from available details.

This event underscores the persistent vulnerability of large corporations to cyber threats, particularly in industries handling customer data. Previous incidents in the hospitality sector have led to significant disruptions and financial losses, prompting increased investments in cybersecurity measures.

Experts note that verifying such claims is crucial, as some groups exaggerate breaches for notoriety. However, the volume of data mentioned suggests a potentially serious compromise if confirmed.

Liittyvät artikkelit

Realistic illustration of a computer screen showing the VanHelsing ransomware attack targeting multiple operating systems, suitable for a cybersecurity news article.
AI:n luoma kuva

VanHelsing ransomware RaaS targets multiple platforms

Raportoinut AI AI:n luoma kuva

A new ransomware-as-a-service operation called VanHelsing emerged on March 7, 2025, quickly claiming at least three victims. It supports attacks on Windows, Linux, BSD, ARM, and ESXi systems, with affiliates retaining 80% of ransoms after a $5,000 deposit. The group prohibits targeting entities in the Commonwealth of Independent States.

Hackers steal millions of Pornhub users' data for extortion

Hackers have accessed and stolen personal information from millions of Pornhub users, aiming to use the data for extortion schemes. The incident was highlighted in a WIRED security news roundup.

Hackers extort French crypto firm Waltio after stealing user data

Raportoinut AI

Hackers have targeted Waltio, a French cryptocurrency accounting platform, demanding a ransom after stealing emails and tax reports from 50,000 customers. The company reported the incident on January 21, 2026, stating that no passwords or highly sensitive data were compromised. French authorities are now investigating the sophisticated cyberattack.

Teknologia

Thousands of Korean Air employees exposed in Oracle breach

Asia

Suspected data breach affects 4.5 million Seoul bike share users

Politiikka

Congressional staff emails hacked in Salt Typhoon campaign

US cybersecurity professionals plead guilty to blackcat ransomware attacks

Two US-based cybersecurity professionals have pleaded guilty to participating in Blackcat ransomware attacks. Ryan Clifford Goldberg and Kevin Tyler Martin face potential years in prison for their involvement.

Coupang data breach spanned June to November

Raportoinut AI

A massive data breach at e-commerce giant Coupang exposed personal information of 33.7 million customers from June 24 to November 8. Officials revealed the attacker exploited the company's electronic signature key, prompting a thorough government investigation. The incident has heightened public concerns over South Korea's data protection capabilities.

Chinese hackers install backdoors via Cisco email zero-day

Cisco Talos has detailed how a Chinese-linked group is exploiting an unpatched zero-day in email security appliances since late November 2025, deploying backdoors and log-wiping tools for persistent access.

Sernac demands details from Clínica Dávila after massive data leak

Raportoinut AI

Chile's National Consumer Service (Sernac) has issued a formal request to Clínica Dávila following a cyberattack that leaked about 250 gigabytes of sensitive patient data. The agency demands detailed information within 10 business days on the incident, attributed to a foreign ransomware group named Devman. Compromised data includes clinical records, diagnoses, and medical test results, such as HIV screenings.

2. helmikuuta 2026 10.02

Canada Computers reveals customer data breach

23. tammikuuta 2026 02.03

Huge data leak exposes 149 million credentials without protection

30. joulukuuta 2025 07.58

Hacker claims breach of Condé Nast user database

28. joulukuuta 2025 03.51

Russian Networks Linked to Laundering of LastPass Breach's $35M in Stolen Crypto

26. joulukuuta 2025 23.28

Former Coinbase agent arrested in India over data breach

25. joulukuuta 2025 10.53

LastPass 2022 breach enables years of cryptocurrency thefts

23. joulukuuta 2025 15.18

Nissan says Red Hat breach affected thousands of customers

15. joulukuuta 2025 19.00

Data breach exposes credit card details of over 5.6 million people

12. joulukuuta 2025 08.50

Russian cybercriminals release new ransomware

10. joulukuuta 2025 08.16

Crypto's new rich seek privacy amid extortion threats

 

 

 

Tämä verkkosivusto käyttää evästeitä

Käytämme evästeitä analyysiä varten parantaaksemme sivustoamme. Lue tietosuojakäytäntömme tietosuojakäytäntö lisätietoja varten.
Hylkää