[続報] 個人情報漏洩に関するお詫びとお知らせ
















琵琶湖マリオットホテル セールス&マーケティング部 八藤丸 道太、川上 亜希菜
森トラスト・ホテルズ & リゾーツ株式会社 広報担当
(森トラスト株式会社 広報部内) 担当:相澤直亮
TEL:03-6435-8433 / E-Mail:koho@mori-trust.co.jp

[Follow-up Report] Apology and Notice Concerning Leakage of Personal Information

The hotel reservation system (hereinafter referred to as "this system") provided by Booking.com, operated and managed by Lake Biwa Marriott Hotel, has been illegally accessed, and some customers have received messages directing them to a phishing site. We sincerely apologize for any inconvenience and concern this may cause.

We would like to report on the facts that have come to light through our investigation since our previous announcement as follows.

1. Background of the Incident

On August 7, 2023, we received a message from a customer who had made a reservation through this system that he/she had received a message with a URL link leading to a phishing site through the chat function in this system.

We have confirmed the possibility that the customer's personal information (name, address, telephone number, e-mail address, reservation date, and reservation status) included in the reservation information in this system may have been leaked, and we have confirmed that between August 7, 2023 and August 8, 2023, the customer received a message through the chat function in the reservation system with a URL link leading to a phishing site.

2. Results of the investigation
(1)Cause of the Incident
In cooperation with related organizations and specialized companies, we have been investigating the cause of the problem and the details of the damage. As a result, we have determined that the cause of the unauthorized access was malware infection of the terminal used to manage this system.
We believe that a malicious person used the authentication information stolen by the malware to log in to the administration screen, and sent a message to some of our customers, leading them to a phishing site.

・Possible Leakage of Accommodation Reservation Information
As a result of our request to Booking.com, the system provider, to confirm the personal information (including credit card information) of customers included in the accommodation reservation information in this system, we have been informed that there is no evidence of leakage.

・Message Leading to a Phishing Site
In response to a message that was sent to some customers with a URL link leading to a phishing site, we have contacted each customer who has already received such a message to alert them of the situation.
We would like to ask our customers to continue to exercise caution, and if you receive such a message in the future, please do not access the URL link attached to the message.
3. Future Actions and Measures to Prevent Recurrence

Based on the results of the investigation and the suggestions from the relevant organizations, we have conducted reeducation of our employees. We will continue to strengthen security to respond to new malware attacks and take all possible measures to prevent recurrence.

In the unlikely event that damage from a leak of personal information is confirmed in the future, we will promptly contact the relevant parties and take the necessary action.

For inquiries regarding this matter, please contact
Lake Biwa Marriott Hotel Sales & Marketing Department
Contact:Douta Yatoumaru, Akina Kawakami
For inquiries from the press regarding this matter, please contact
Public Relations, Mori Trust Hotels & Resorts Co.
(within the Public Relations Department of Mori Trust Co.)
Contact: Naoaki Aizawa
TEL:03-6435-8433 / E-Mail:koho@mori-trust.co.jp