Seasons Hotel Group Data Leaked to the Darknet


The material was posted shortly after the apparent deadline of 2 September passed, which the Seasons Hotel Group had been offered to pay a ransom.

The data appears to include records pertaining to the operations of all four of Seasons’ properties, including Seasons Heritage Melbourne and Seasons Botanical Gardens in Melbourne, Seasons of Perth, and Seasons Darling Harbour in Sydney, even though LockBit lists Seasons Darling Harbour as the victim on its leak site.

Materials from Seasons Harbour Plaza, also in Sydney, and Seasons International Management, situated in Perth, are also included in the provided data.

There does seem to be some limited client information present, even though the majority of the leaked information is financial in nature and relates to various accounts and bills. One invoice, for instance, purports to indicate a number of customers and the duration of their stays and is sent to Travelscape, an Expedia company.

It would seem that neither a significant amount of personally identifiable data nor any customer credit card information were exposed. However, the leak also contains certain Seasons Harbour Plaza employees’ 2016 banking information.

Nevertheless, there are numerous bills from Season’s numerous third-party vendors, complete with business letterheads, account information, and contact information. In addition to a tiny amount of CCTV footage, the breach also includes cash flow statistics and other information.

The documents that were leaked span the years 2011 through 2023.