In late September 2025, German budget hotel chain Motel One was hit by a major ransomware attack carried out by the ALPHV/BlackCat group. The attackers gained unauthorized access to internal systems, exfiltrating roughly 6 terabytes of data containing nearly 24.5 million files. Stolen data includes customer booking details such as names, addresses, payment information, contact details, and credit card data, spanning the past three years. Motel One promptly implemented IT security measures, preventing operational disruptions, but confirmed the breach and notified impacted customers, including 150 credit card holders. The ransomware gang demanded a ransom, threatening to publish stolen data if payment was not made. The incident underscores increasing ransomware threats to the hospitality sector, with attackers leveraging stolen personal and financial data for extortion and further attacks. Motel One continues investigations with cybersecurity experts to enhance defenses and mitigate reputational damage
