Portland hotel and brewpub chain McMenamins was hit with a ransomware attack that may have compromised employees’ personal information, but no customer payment information appears to have been impacted, the company said Wednesday.
A ransomware attack occurs when a cybercriminal deploys malicious software to block access to a company’s computer system. The system is supposed to remain blocked until a fee is paid to the attacker.
McMenamins said the ransomware attack was identified and blocked on Dec. 12. The company said it notified the FBI and hired a cybersecurity firm to identify the source and full scope of the attack.
In a news release, the company said it’s possible that employee data such as names, addresses, dates of birth, Social Security numbers, direct deposit bank account information and benefits records may have been obtained, but “it is not currently known whether that is the case.”
