Boyne Resorts
| Primary URL | Location | Industry | www[.]boyneresorts[.]com |
Country
United States of America
|
Hospitality & Leisure
|
|---|
Profile
Boyne Resorts is a ski resort operator headquartered in the United States. The company manages ski resorts that include lodging accommodations and reservation systems for guests. Their services encompass booking platforms for lodging and access to resort facilities. This operational model relies on integrated IT infrastructure to handle reservations and guest management. The corporate structure coordinates these activities across various resort locations. Without explicit details on the number of properties or market share, the organization is defined by its role in the ski resort industry. The business focuses on providing recreational experiences centered around winter sports. Technology plays a key role in facilitating customer bookings and resort operations. The 2020 cyber incident directly impacted these core functions, demonstrating the critical nature of their IT systems.
In October 2020, Boyne Resorts experienced a significant ransomware attack attributed to the Russian-linked Evil Corp group. The WastedLocker malware encrypted files with a .easy2lock extension, forcing partial network shutdowns to contain the infection. This disruption crippled company-wide reservation capabilities, including online booking platforms for lodging, with recovery taking several days. The attack targeted both corporate and resort IT systems, affecting multiple aspects of operations. The perpetrators' sanctioned status introduced potential regulatory risks under U.S. sanctions laws. The incident underscored vulnerabilities in the company's cybersecurity posture and the broader threat to the hospitality sector. Recovery efforts required restoring systems and data without payment, as is common in such attacks. The event received public attention through cybersecurity news outlets, detailing the attack's methodology and impact. This breach remains a notable example of ransomware affecting critical tourism infrastructure. The long-term implications included reputational damage and increased scrutiny of cybersecurity measures in the industry.