Data breach reported at the Brunswick Hotel in Maine

A data breach was reported at a Brunswick, Maine, hotel and it may have exposed personal information for thousands of people. The Brunswick Hotel and Tavern management says malware was placed on their front desk computer sometime last November, which means anyone that has stayed there between then and when it was discovered may have had their information stolen.

Dan Flaherty, chief financial officer for Portland-based The Olympia Cos., said Wednesday that investigators of the breach believed the malware was installed through a scam phishing email made to look like a message from a guest.

“It was mistakenly opened up, and the malware is then designed to avoid detection from antivirus software,” Flaherty told The Forecaster.

Virtual Event

Hotel Optimization Part 3 | January 27, 2021

With 2020 behind us and widespread vaccine distribution on the horizon, the second half of the new year is looking up, but for Q1 (and most likely well into Q2) we’re very much still in the thick of what has undeniably been the lowest point of the pandemic. What can you be doing now to power through and set yourself up for a prosperous 2021 and beyond? Join us at Part 3 of Hotel Optimization – A Virtual Event on January 27 from 10am – 1:05pm ET for expert panels focused on getting you back to profitability.

He said the company estimated a total of 2,600 guest accounts possibly had been affected, but investigators were not able to confirm how many of those were actually compromised.

A copy of the customer letter was posted online Aug. 25 by the Vermont Office of the Attorney General. According to the letter, “it appears that one of the front desk computers at the hotel was infected with sophisticated malware designed to capture and permit remote access to payment card information while avoiding detection by anti-virus software” for a period of nearly eight months beginning Nov. 29. It was discovered and removed on July 21.

Olympia said in the letter that it has retained “a leading cybersecurity and investigations company” to investigate the malware infection and tighten the hotel’s computer security, reports the Portland Press Herald.