Real estate firm Siegel Group confirms a major customer data breach

American real estate developer Siegel Group said the data security incident it suffered earlier this year compromised the sensitive personal information of its clients, including their healthcare and passport data.

 

Headquartered in Paradise, Nevada, Siegel Group operates the Siegel Suites chain and hundreds of casinos, suites, and hotels throughout southwest USA. Founded in 2001, the full service commercial real estate firm has more than 1,000 employees and an annual revenue of more than $500 million.

 

In a data security incident notice filed with the Attorney General of Vermont, Siegel Group said that on February 2, it identified suspicious activity in its internal network. The real estate giant immediately launched an investigation, with assistance from external cyber security experts, to determine the nature and scope of the incident.

 

“The investigation found that an unauthorised actor viewed and/or copied certain files stored within our network between January 28, 2025, and February 2, 2025,” reads the notice.

 

The compromised data included names, Social Security numbers, dates of birth, passport numbers, state identification cards, alien registration numbers, direct deposit account numbers, signatures, medical information and more. The company is yet to share the number of affected individuals.

 

“In response to this incident, we reported the event to law enforcement and implemented additional security measures related to data privacy and security to protect against similar events moving forward,” Siegel Group added.

 

While the real estate company found no evidence of the compromise data being misused, it has advised all affected individuals to regularly monitor their credit reports, account and benefit statements and report any suspicious activity to law enforcement authorities, including the police and the state attorney general. It has also offered complimentary identity protection and credit monitoring services through Experian to all affected individuals.

 

A relatively new hacker group going by the name "Interlock ransomware" recently claimed responsibility for the cyber attack on Siegel Group and listed it as a victim on its data leak site. The company has not verified the hacker group’s claims nor shared details on whether it paid a ransom.