Massive Data Breach Threatens Guests of Huazhu Hotels
In what could be one of the biggest data-breach cases in China, nearly 500 million pieces of personal data and booking information were reportedly leaked from leading Chinese hotel chain operator Huazhu Group Ltd.
A post emerged online Tuesday selling information related to customers, bringing concerns over the data breach to light. Huazhu is one of the biggest economy hotel operators and franchisors in China.
Huazhu told Caixin that the investigation is still underway and asked for help from internet platforms to prevent the circulation of the information. Nasdaq-listed Huazhu’s stock tumbled over 3.5% Tuesday morning.
Internet security company Zpower Inc. said in a statement that it detected the data breach, which could involve personal identification information on 130 million customers of 13 Huazhu hotels.
Zpower said it verified the data, found that some of the data was sold on the online black market and reported the case to Huazhu and police. Zpower said the breach also involved 123 million pieces of Huazhu’s online user registration information and 240 million pieces of hotel booking records.
Shanghai-based Huazhu said it is working with the public security authority. Huazhu said it also hired data security professionals to launch an internal investigation. The Changning district branch of the Shanghai Public Security Bureau confirmed Huazhu’s report.
Hotels affected include top Huazhu brands such as Hanting Hotel, Orange Hotel and Elan Hotel, as well as franchise hotels of international brands Ibis and Ibis Styles.
The case is the latest to put online privacy protection under the spotlight. Chinese authorities have launched a crackdown on crimes involving internet privacy violations. As of July 2017, regulators tracked down at least 1,800 data-breach cases and arrested nearly 5,000 suspects, according to official figures.
Last week, Caixin reported that a group of Chinese companies were found stealing up to 3 billion pieces of user data from 96 tech companies — including e-commerce giant Alibaba Group Holding Ltd.
According to a police statement, a group of companies led by Shenzhen-listed Ruizhi Huasheng Technology Corp. hijacked data from the country’s major state-owned mobile carriers and sold it for profit. The stolen data included user registration information on the popular messaging app WeChat and e-commerce platform Taobao.
With a primary focus on economy and midprice hotels, Huazhu had 3,903 hotels with 393,417 rooms in operation as of June 30, according to the company. Huazhu reported 2.5 billion yuan ($367 million) of revenue in the second quarter this year, up 25.9% from a year earlier.
Contact reporter Han Wei (firstname.lastname@example.org)
Feb 28 18:15
Feb 28 16:14
Feb 28 16:10
Feb 28 12:29
Feb 27 19:03
Feb 27 18:55
Feb 27 12:14
Feb 27 06:36
Feb 26 17:49
Feb 26 15:56
Feb 26 11:29
Feb 26 05:10
Feb 26 05:07
Feb 25 18:27
Feb 25 17:52
- 114% of Recovered Covid-19 Patients in Guangdong Tested Positive Again
- 2Another Study Claims Wuhan Seafood Market May Not Be Source of Covid-19 Outbreak
- 3Exclusive: Cluster of Death Found at Wuhan Nursing Home Near Seafood Market
- 4Coronavirus Monday Update: Virus May Gain Ground Again, Experts Warn; Costco Shanghai Urged to Control Traffic
- 5Coronavirus Live Updates | Friday: WHO Declares Coronavirus a ‘Global Level’ Threat; OPEC Mulls Bigger Output Reduction; Fed Considers Rate Cut
- 1Power To The People: Pintec Serves A Booming Consumer Class
- 2Largest hotel group in Europe accepts UnionPay
- 3UnionPay mobile QuickPass debuts in Hong Kong
- 4UnionPay International launches premium catering privilege U Dining Collection
- 5UnionPay International’s U Plan has covered over 1600 stores overseas