Ransomware gang claims it hacked into Hyatt systems, says it has stolen data for sale

• NightSpire claims Hyatt Place Chelsea ransomware attack, stealing 48.5 GB of data
• Stolen files may include employee credentials, enabling phishing and internal system access
• Hyatt has not confirmed breach; hospitality industry remains frequent ransomware target

The Hyatt Place Chelsea New York hotel, part of the Hyatt Hotels Corporation, appears to have suffered a ransomware attack and lost sensitive data on a (yet) unknown number of people.

A threat actor going by NightSpire recently added the hotel to its dark web data leak website, claiming to have stolen 48.5 GB of sensitive data. It also shared a sample of the stolen files, and told all parties interested in acquiring the full archive to reach out.

Security researchers from Cybernews analyzed a sample of the stolen files and said it appears to contain invoices, expense reports with full employee names, contact information, signatures, as well as partner company data.