lockbit2 attacks Hyatt Ahmedabad

Incident Date:

June 6, 2022

World map



lockbit2 attacks Hyatt Ahmedabad


Hyatt Ahmedabad




Ahmedabad, India

Gujarat, India

First Reported

June 6, 2022

Hyatt Ahmedabad Suffers Ransomware Attack

Hyatt Ahmedabad, a luxury hotel in India, has been targeted by the ransomware group Lockbit2. The attack was announced on the group's dark web leak site. The hotel operates in the Hospitality sector and is known for its high-end services.

Company Profile

Hyatt Ahmedabad is part of the Hyatt Hotels Corporation, a global hospitality company with over 900 properties across 60 countries. The company is known for its luxury hotels and resorts, and its brands include Grand Hyatt, Park Hyatt, and Andaz. Hyatt Hotels Corporation is a publicly traded company with a market capitalization of approximately $10 billion.

Industry Standout

Hyatt Hotels Corporation stands out in the hospitality industry for its commitment to customer service and its diverse portfolio of brands. The company has been recognized for its efforts in sustainability and social responsibility, and it has implemented various initiatives to reduce its environmental impact.


The ransomware attack on Hyatt Ahmedabad highlights the vulnerabilities of the hospitality sector to cyber threats. Ransomware groups often target organizations with large amounts of data, as they can demand high ransoms in exchange for decrypting the encrypted files. In this case, Lockbit2 was able to infiltrate the hotel's systems and encrypt its data, demanding a ransom in exchange for the decryption key.

The attack on Hyatt Ahmedabad is part of a larger trend of ransomware attacks on businesses, which increased by 50% in 2023. Ransomware groups often exploit vulnerabilities in popular enterprise products like Citrix or VMware, and they can also use zero-day exploits against specific targets.

The ransomware attack on Hyatt Ahmedabad is a reminder of the importance of cybersecurity in the hospitality industry. Organizations must implement robust security measures to protect their data and systems from cyber threats. Hyatt Ahmedabad and other businesses in the sector should consider investing in cybersecurity solutions and training their employees to recognize and respond to potential threats.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.