Radisson Hotel Group has revealed that it has suffered a data breach affecting Radisson Rewards members. This could potentially affect people who have stayed at any one the company’s 1,400 hotels, in 70 countries.
The hotel chain includes hotels such as Park Plaza, Park Inn, Radisson Blu, Radisson Red, Country Inn & Suites, and Radisson Collection.

The company said: “This data security incident did not compromise any credit card or password information. Our ongoing investigation has determined that the information accessed was restricted to member name, address (including country of residence), email address, and in some cases, company name, phone number, Radisson Rewards member number and any frequent flyer numbers on file.”

It’s not known how many Reward members are affected but the company says it’s “a small percentage”. Who knows what a “small percentage’ is in real terms? Given that Radisson Blu alone has a near 45,000 rooms in operation, the number of Rewards members could be considerable.

So perhaps we should think of “small percentage” as actually quite a lot. Even more so when the company couldn’t bring itself to say it had been hacked. Rather it said it had a “data security incident” which we’re guessing was used to take the sting out of the word “hack.”

After all hacks are now so frequent and so common we’ve come to associate the word with millions of compromised accounts, customer fraud and potentially significant financial loss.

Further the Radisson Hotel Group took four weeks to inform customers of the “data security incident” which doesn’t quite engender trust.

Are you a Reward member?

If you’re a Reward scheme member then your burning priority is to discover what personal details were hacked. You ought to have received a letter from the company telling you about the hack.

As in all these data theft cases there are a few simple guidelines to keep in mind:
  • Be mindful of attempts by scammers to use phishing emails or unsolicited phone calls to trick Rewards members. These scams may likely to claim to be from Radisson.
  • Don’t click on links in suspicious emails or reveal personal data such as passwords, log-in user names, banking information via email, phone or on a website. If in doubt call the company in question and ask them whether they have sent an email or made a call.