cyber Ransomware

Central Restaurants Group

Nov 30, 2022 1 min read
Central Restaurants Group

Desorden Group hit Central Restaurants Group (CRG) in Thailand after it brought down their entire backend, which consists of 5 servers.

They exfiltrated data including 400 GB of files and data of millions of customers from many countries over a course of 10 days.

The data included hotel guest data included name, passport number, id number, phone, email, (some had the address of residence), check-in/departure time, etc. and also financial data, corporate data, employee data,

Source: https://www.databreaches.net/desorden-group-expands-attack-on-central-group-after-deal-to-pay-them-allegedly-fell-through/

TPRM report: https://scoringcyber.rankiteo.com/company/central-restaurants-group-co-ltd-

"id": "cen1750111122",
"linkid": "central-restaurants-group-co-ltd-",
"type": "Ransomware",
"date": "10/2021",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of a geographical region"
{'affected_entities': [{'customers_affected': 'Millions',
                        'industry': 'Hospitality',
                        'location': 'Thailand',
                        'name': 'Central Restaurants Group (CRG)',
                        'type': 'Corporation'}],
 'attack_vector': 'Backend Server Attack',
 'data_breach': {'data_exfiltration': '400 GB of files',
                 'number_of_records_exposed': 'Millions',
                 'personally_identifiable_information': ['Name',
                                                         'Passport number',
                                                         'ID number',
                                                         'Phone',
                                                         'Email',
                                                         'Address of residence',
                                                         'Check-in/departure '
                                                         'time'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Hotel guest data',
                                              'Financial data',
                                              'Corporate data',
                                              'Employee data']},
 'description': 'Desorden Group hit Central Restaurants Group (CRG) in '
                'Thailand after it brought down their entire backend, which '
                'consists of 5 servers. They exfiltrated data including 400 GB '
                'of files and data of millions of customers from many '
                'countries over a course of 10 days. The data included hotel '
                'guest data including name, passport number, id number, phone, '
                'email, (some had the address of residence), '
                'check-in/departure time, etc. and also financial data, '
                'corporate data, employee data.',
 'impact': {'data_compromised': 'Hotel guest data, financial data, corporate '
                                'data, employee data',
            'identity_theft_risk': 'High',
            'operational_impact': 'Entire backend brought down',
            'systems_affected': '5 backend servers'},
 'motivation': 'Data Exfiltration',
 'ransomware': {'data_exfiltration': 'Yes'},
 'threat_actor': 'Desorden Group',
 'title': 'Desorden Group Cyber Attack on Central Restaurants Group',
 'type': 'Data Breach'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.