The Grand Hotel Taipei on Saturday confirmed that its information system had been illegally accessed and expressed its deepest apologies for the concern it has caused its customers, adding that the issue is being investigated by the Ministry of Justice Investigation Bureau.

The hotel said that on Tuesday last week, it had discovered an external illegal intrusion into its information system.

An initial digital forensic investigation confirmed that parts of the system had been accessed, it said, adding that the possibility that some customer data were stolen and leaked could not be ruled out.

Photo: Chou Hsin-jui, Taipei Times

The actual scope and content of the affected data are still awaiting final forensic confirmation, the hotel said.

To protect customers’ rights, the hotel urged guests to remain highly vigilant and verify all information carefully if they receive suspicious e-mails, unusual payment instructions, requests for account passwords or financial information, or phone calls from unknown numbers.

Guests could also contact the hotel’s Public Relations Department at (02) 2886-1818, ext. 1515, 1022 or 1026, it said.

The hotel said it immediately activated its highest-level cybersecurity response mechanisms after the breach, including disconnecting affected systems, conducting a comprehensive forensic investigation and risk assessment, bolstering account and privilege controls, as well as enhancing monitoring and protection levels.

It added that it has also notified the authorities, in accordance with the law, and asked the Investigation Bureau to initiate an investigation.

The hotel said it is addressing the incident with the utmost seriousness and would pursue all legal liabilities to the fullest extent of the law without leniency.

The hotel’s operations remain normal, and accommodations and meal services continue to be provided, it added.