The hotel chain's advisory suggests that potentially employee accounts, which had permission to access this data, were at fault and fraudulently accessed by an attacker.

Information including names, physical addresses, countries of residence, email addresses, and some company names, telephone numbers, frequent flyer numbers, and Radisson Rewards member numbers were compromised.