Personal data and booking information from 13 hotels operated by Huazhu Hotels Group (华住酒店集团) has reportedly been leaked in what could be the largest data breach in China in five years, according to Chinese cybersecurity media FreeBuf (in Chinese).

This morning, a post on a Chinese dark web forum titled “Huazhu-owned hotels booking data” claimed to be selling personal data and information of customers from Huazhu-owned hotels including Hanting Inns and Hotels (汉庭酒店), Hi Inn (海友酒店), and JI Hotel (全季酒店). According to local reports, 130 million customers are believed to be affected by the breach. Leaked information potentially includes 240 million lines of data containing phone numbers, email addresses, bank account numbers, and booking details.

The stolen data was originally selling for 8 bitcoins (equivalent to roughly RMB 350,000). The seller reportedly lowered its asking price to 1 bitcoin, after the news spread quickly across local media.

Start your free trial now.

Get instant access to all our premium content, archives, newsletters, and online community.

Monthly Membership

Yearly Membership

What you get

Full access to all premium content and our full archives

Members'-only newsletters

Preferential access and discounts to all TechNode events

Direct access to the TechNode newsroom

Start your free trial now.

Get instant access to all our premium content, archives, newsletters, and online community.

Monthly Membership

Yearly Membership

Nicole Jao

Nicole Jao is a reporter based in Beijing. She’s passionate about emerging trends, news, and stories of human interest within the world of technology. Connect with her on Twitter or via email: nicole.jao.iting@gmail.com.