Hackers infiltrated the BWH Hotels reservation system, gaining unauthorized access to guest data for over six months. The breach exposed sensitive information, including names and contact details, across multiple hotel brands operated by the company. As one of the world's largest hotel networks with over 4,000 properties in more than 100 countries, the incident has significant implications for guest privacy. The prolonged nature of the breach suggests a lack of robust security measures, allowing threat actors to remain undetected for an extended period. The exact number of affected guests remains undisclosed, adding to the uncertainty surrounding the incident1. This data breach matters to security practitioners because it highlights the importance of implementing robust access controls and regular security audits to prevent similar incidents, which can have long-lasting consequences for both the company and its customers.
Hackers accessed BWH Hotels reservation system for months
⚡ High Priority
Why This Matters
BWH Hotels disclosed a data breach, with threat actors having had access to guest reservation data for more than six months.
References
- SecurityAffairs. (2026, May 12). Hackers accessed BWH Hotels reservation system for months. SecurityAffairs. https://securityaffairs.com/192038/data-breach/hackers-accessed-bwh-hotels-reservation-system-for-months.html
Original Source
SecurityAffairs
Read original →