Hackers Use New Tactic at Austrian Hotel: Locking the Doors

Hackers Use New Tactic at Austrian Hotel: Locking Doors

The ransom demand arrived one recent morning by email, after about a dozen guests were locked out of their rooms at the lakeside Alpine hotel in Austria.

The electronic key system at the picturesque Romantik Seehotel Jaegerwirt had been infiltrated, and the hotel was locked out of its own computer system, leaving guests stranded in the lobby, causing confusion and panic.

“Good morning?” the email began, according to the hotel’s managing director, Christoph Brandstaetter. It went on to demand a ransom of two Bitcoins, or about $1,800, and warned that the cost would double if the hotel did not comply with the demand by the end of the day, Jan. 22.

Mr. Brandstaetter said the email included details of a “Bitcoin wallet” — the account in which to deposit the money — and ended with the words, “Have a nice day!”

With the 111-year-old hotel brimming with eager skiers, hikers and vacationers, some having paid about $530 for a suite with a panoramic view and sauna, Mr. Brandstaetter said he decided to cave in.

Guests had already complained that their electronic room keys were not working, and receptionists’ efforts to create new ones had proved futile. Bashing down the doors was not an option.

The reservation system for the hotel in the village of Turracherhöhe, about 90 minutes by car from Salzburg, was paralyzed.

“We were at maximum capacity with 180 guests and decided that it was better to give in,” he said. “The hackers were very pushy.”

Security experts said the attack on the hotel appeared to be a novel example of an increasingly malicious and prevalent type of modern-day piracy.

The weapon? A type of software known as ransomware.

The crime is as simple as it is mendacious. Victims typically receive an email with a link or attachment that contains software that encrypts files on their computer and holds them hostage until they pay a ransom. Many of the hackers who carry out such attacks operate in Russia and Eastern Europe, according to the police, and often demand a ransom in Bitcoin, a digital currency that is hard to trace.

“Ransomware is becoming a pandemic,” said Tony Neate, a former British police officer who investigated cybercrime for 15 years. “With the internet, anything can be switched on and off, from computers to cameras to baby monitors.”

Still, he added, “hacking a hotel and locking people out of their rooms is a new line of attack.”

Mr. Neate, now chief executive of Get Safe Online, a government-backed security charity in Britain, said that demands in ransomware schemes were usually low enough that victims would acquiesce. As a result, however, hackers waged dozens of attacks a day to make them financially viable.

He nevertheless counseled victims not to pay, arguing that that would only further encourage more attacks and that the funds used to pay the ransom would bankroll nefarious activity, including possibly terrorism. Hotels, he warned, should also guard against copycat crimes by reinforcing their digital security.

According to the United States Justice Department, ransomware attacks quadrupled in 2016 to an average of 4,000 a day. The F.B.I. said the costs to victims of such attacks rose to $209 million in the first three months of 2016, compared with $24 million throughout 2015.

It is a sign of the crime’s sinister proliferation that it has also entered popular culture.

In an episode of the legal drama “The Good Wife,” a Russian hacker attacked a law firm in the middle of a prominent case, encrypting its files and demanding a $50,000 ransom. The hacker eventually relented after the firm turned the tables by infecting the extortionist’s computer with propaganda criticizing Russia’s president, Vladimir V. Putin.

In the real world, however, many have been forced to pay up.

Last year, hospitals in California and Kentucky were targeted in ransomware attacks. In one case, a Los Angeles hospital paid more than $17,000 to hackers to restore its computer network, and all of its digital medical files. Other victims in Europe and the United States have included a municipal utility, companies, schools, law firms and police departments.

A recent study by the Institute for Critical Infrastructure Technology, a Washington-based organization focusing on cybersecurity, noted that ransomware threatened to “wreak havoc on America’s critical infrastructure community” and called it the digital equivalent of a “centuries old criminal tactic.”

Mr. Brandstaetter said he had decided to go public with the attack at his hotel so that others would be more vigilant.

To guard against future attacks, however, he said the Romantik Seehotel Jaegerwirt was considering replacing its electronic keys with old-fashioned door locks and real keys of the type used when his great-grandfather founded the hotel.

“The securest way not to get hacked,” he said, “is to be offline and to use keys.”

Click here for the original article.

Dan Bilefsky

1 comment

Are you a Robot? * Time limit is exhausted. Please reload the CAPTCHA.

  • Windows XPのサポート終了を半年後に控えて、パソコンの買い替えをしようと思いますが、結構課題があって、新しいパソコンを快適に使うまで、なかなか時間がかかりそうです。  とはいっても,家電製品が主役のCES 2015というイベントにおいて,PCは脇役どころか存在感すらほとんどないのが正直なところ。 [url=]office 2016 ダウンロード版[/url]
    やっぱり高いですよね~ 3万円しますからねぇ。  高級感と堅牢性を兼ね備えたヘアライン加工のメタル素材天板を採用。
    [url=]韓国ドラマ ママ~最後の贈りもの~ DVD-BOX 価格[/url] Gateway ナビダイヤル:0570-00-1102 (IP電話からは011-330-5872)では1年間の無償サポートがあり、長時間待たされるのかと思ったら、すんなり電話対応をして頂けました。 多くの人はいまだにこれらのOSを「GNU / Linuxディストリビューション」と呼ぶべきだと言っているが、Androidやその他のソフトウェアを動かしているのはカーネルだ。
    [url=]microsoft office 2010 pro[/url]
    一方で、Office 2003以前はセキュリティサポートが終了しており今後改良されることはありません。 推奨環境外では正常に動作しない場合があるため推奨環境からご利用ください。 [url=]office 2013 激安[/url]
    ※iniファイルは種類が「構成設定」となっているもの末尾を「1」に書き換える 初期設定と動作確認「EpgDataCap_Bon」フォルダ内の「EpgDataCap_Bon.exe」をダブルクリックし、起動する。 OneDrive にドキュメントを保存し、どこからでもアクセスできます。
    [url=]日本アニメ人気DVD box[/url]  とそんな感じで新しく導入されたPCですが、総合評価は☆5つであらわすと、4ぐらいいけます。 ローカルにダウンロードしていますので手動で印刷してください。
    [url=]韓国ドラマ 奇皇后I-V -ふたつの愛 涙の誓い- DVD-BOX[/url]



Website Logo Small
HLC.COM Logo - Website