The hackers had tried and failed to pull off a ransomware attack that would have locked away the hotel group’s data. If they’d been successful, it would have been a huge coup, given the 6,000 hotels owned by Intercontinental Hotels Group (IHG), which include familar names like Holiday Inn, Crowne Plaza, and Regent. When the ransomware approach failed, the couple pivoted to a more destructive path: Burning it all down with a wiper attack to permanently destroy the hotel group’s data.

Hotel Hackers Destroyed Data for “Fun”

The inside information comes from the hackers, who called themselves “TeaPea.” They reached out to the BBC through the encrypted messaging app Telegram, including screenshots of their efforts for verification, which IHG has confirmed are genuine. The name “wiper” refers to the concept of wiping a hard drive, irreversably erasing the data on it, although a wiper attack itself can refer to any malicious software that’s designed to destroy data. The Bonnie-and-Clyde hackers also let the BBC in on their guilt, or lack thereof, citing depressed wages in their country as a motivation for their turn to cyber crime:

How to Stay Safe From Ransomware and Wiper Attacks

It’s hard to overstate how large an issue ransomware is for businesses around the globe in 2022. This style of cyberattack has made up a whopping 70% of all cyberattacks that have been reported across the past 12 months, according to recent report. As Tech.co Content Manager Jade Artry noted while covering that report, one of the takeaways is that attackers tend to look for weak links when scouting for potential victims: In other words, the bad actors behind ransomware attacks aren’t necessarily hardened master criminals themselves; they’re just biding their time until they spot an opportunity. And as the IHG hackers prove, sometimes that opportunity is as obvious as QWERTY1234. The right password management tool could have stopped the hackers from accessing the IHG database, as it would have suggested a far more complex password, which users wouldn’t have needed to remember all on their own. Tech services may phase out passwords entirely in the near future, largely due to security breaches like this. Until then, your business should check that its passwords aren’t the most crackable ones around.