Shangri-La Group Company CyberSecurity Posture
shangri-la.com
Headquartered in Hong Kong SAR, the Shangri-La Group has grown from a single hotel business to a diverse and integrated global portfolio comprising quality real estate and investment properties, wellness and lifestyle facilities. Today, the Group owns, operates and manages 100+ hotels under our family of five brands: Shangri-La, Shangri-La Signatures, Kerry Hotels, JEN by Shangri-La, and Traders. We are part of the Kuok Group, one of Asia's most dynamic multinational conglomerates and a leader in properties, logistics, agribusiness, maritime and hospitality. From our strong base in Asia, we have expanded into key gateway cities and markets around the world. Our properties sit on some of the world’s most prestigious addresses and exotic destinations. Through the environments we have created, we enable people to come together to live, work, play, eat, and rest well.
Company Details
shangri-la-hotels-and-resorts
16,184
758,816
7211
shangri-la.com
0
SHA_2070796
In-progress
Shangri-La Group Risk Score (AI oriented)Between 700 and 749
Shangri-La Group Global Score (TPRM)XXXX
Description: Shangri-La Group suffered a data breach incident which leaked the personal information of more than 290,000 people who stayed at three hotels in Hong Kong. Some of the files were leaked from the databases, though the contents of the leaked data files may involve guest data. The data included the customers’ names, contact details, account numbers for the membership scheme, booking dates and affiliated companies. However, the hotel chain offered its customers in Hong Kong a free year of personal data protection.
No incidents recorded for Shangri-La Group in 2025.
No incidents recorded for Shangri-La Group in 2025.
No incidents recorded for Shangri-La Group in 2025.
Shangri-La Group cyber incidents detection timeline including parent company and subsidiaries
Headquartered in Hong Kong SAR, the Shangri-La Group has grown from a single hotel business to a diverse and integrated global portfolio comprising quality real estate and investment properties, wellness and lifestyle facilities. Today, the Group owns, operates and manages 100+ hotels under our family of five brands: Shangri-La, Shangri-La Signatures, Kerry Hotels, JEN by Shangri-La, and Traders. We are part of the Kuok Group, one of Asia's most dynamic multinational conglomerates and a leader in properties, logistics, agribusiness, maritime and hospitality. From our strong base in Asia, we have expanded into key gateway cities and markets around the world. Our properties sit on some of the world’s most prestigious addresses and exotic destinations. Through the environments we have created, we enable people to come together to live, work, play, eat, and rest well.
J D Wetherspoon is a leading pub operator in the UK and Ireland. Back in 1979, founder chairman Tim Martin opened the very first Wetherspoon – in Muswell Hill, north London. Today, Tim and the company run over 850 pubs and hotels, spread right across the UK and, more recently, Ireland. During its hi
Jumeirah, a global leader in luxury hospitality and a member of Dubai Holding, operates an exceptional portfolio of 31 properties, including 33 signature F&B restaurants, across the Middle East, Europe, Asia and Africa. In 1999, Jumeirah changed the face of luxury hospitality with the opening of t
Caesars Entertainment, Inc. is the largest casino-entertainment Company in the U.S. and one of the world's most diversified casino-entertainment providers. Since its beginning in Reno, NV, in 1937, Caesars Entertainment, Inc. has grown through development of new resorts, expansions and acquisitions.
Since inception, Rotana has grown to be the region’s largest hospitality management company, and a brand that is widely recognized and admired. Rotana currently manages a portfolio of over 100 properties throughout the Middle East, Africa, Eastern Europe and Türkiye offering a wide range of servic
Hilton (NYSE: HLT) is a leading global hospitality company with a portfolio of 24 world-class brands comprising more than 8,400 properties and over 1.25 million rooms, in 140 countries and territories. Dedicated to fulfilling its founding vision to fill the earth with the light and warmth of hospita
With over 500 properties worldwide, Marriott Hotels has reimagined hospitality to exceed the expectations of business, group, and leisure travelers. Marriott Hotels, Marriott’s flagship brand of quality-tier, full-service hotels and resorts, provides consistent, dependable and genuinely caring
Our Vision : Asia’s premier purveyor of designer affordable luxury hotels & design oriented value hotels focusing in the business travel market with particular strength in Indonesia and implementing asset-light strategy. Our Mission : Never to settle for anything less than excellence and will
Whitbread PLC is the owner of the UK’s favourite hotel chain, Premier Inn, as well as restaurant brands, Beefeater, Brewers Fayre, Table Table, Bar + Block and Cookhouse and Pub. Whitbread employs more than 35,000 people in more than 1,200 Premier Inn hotels and restaurants across the UK and German
The resorts and casinos of MGM Resorts International™ are some of the most famous in the world. Our 28 destinations are renowned for their winning combination of quality entertainment, luxurious facilities, and exceptional customer service. We are actively expanding our presence globally, with pot
.png)
The Philippines has strengthened its position as one of the Asia-Pacific region's more advanced digital economies, rising to seventh out of...
Shangri-La Group has launched two new hotels within a single complex at the Shanghai Hongqiao transportation hub.
The vast empire of Malaysia's richest man, Robert Kuok, includes the Shangri-La hospitality chain, overseen by his daughter Kuok Hui Kwong.
Celebrate creativity and innovation at the Advertising Awards Asia Pacific 2026 by MARKETECH APAC — enter now and put your groundbreaking...
Google's revelation that China mounted a cyber-espionage campaign against Southeast Asian diplomats should surprise no one.
This marks a return to the group for Yvonne, who previously spent over a decade with Shangri-La and Traders Hotels in Dubai and Abu Dhabi,...
Kuwait's Deputy Prime Minister and Minister of Defense, Sheikh Abdullah Al-Ali Al-Sabah, took part in the opening ceremony of the 22nd Shangri-La Dialogue...
Chief of Defence Staff General Anil Chauhan will visit Singapore to attend the 22nd edition of the Shangri-La Dialogue, hosted annually by...
The Five Power Defence Arrangements (FPDA) defence partnership between Singapore, Australia, Malaysia, New Zealand and the United Kingdom remains relevant in...
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
The official website of Shangri-La Group is http://www.shangri-la.com/group/.
According to Rankiteo, Shangri-La Group’s AI-generated cybersecurity score is 724, reflecting their Moderate security posture.
According to Rankiteo, Shangri-La Group currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
According to Rankiteo, Shangri-La Group is not certified under SOC 2 Type 1.
According to Rankiteo, Shangri-La Group does not hold a SOC 2 Type 2 certification.
According to Rankiteo, Shangri-La Group is not listed as GDPR compliant.
According to Rankiteo, Shangri-La Group does not currently maintain PCI DSS compliance.
According to Rankiteo, Shangri-La Group is not compliant with HIPAA regulations.
According to Rankiteo,Shangri-La Group is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Shangri-La Group operates primarily in the Hospitality industry.
Shangri-La Group employs approximately 16,184 people worldwide.
Shangri-La Group presently has no subsidiaries across any sectors.
Shangri-La Group’s official LinkedIn profile has approximately 758,816 followers.
Shangri-La Group is classified under the NAICS code 7211, which corresponds to Traveler Accommodation.
No, Shangri-La Group does not have a profile on Crunchbase.
Yes, Shangri-La Group maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/shangri-la-hotels-and-resorts.
As of December 14, 2025, Rankiteo reports that Shangri-La Group has experienced 1 cybersecurity incidents.
Shangri-La Group has an estimated 13,840 peer or competitor companies worldwide.
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Title: Shangri-La Group Data Breach
Description: A data breach incident at Shangri-La Group leaked the personal information of more than 290,000 people who stayed at three hotels in Hong Kong. The leaked data included customers’ names, contact details, account numbers for the membership scheme, booking dates, and affiliated companies. The hotel chain offered its customers in Hong Kong a free year of personal data protection.
Type: Data Breach
Common Attack Types: The most common types of attacks the company has faced is Breach.
Data Compromised: Customers’ names, Contact details, Account numbers for the membership scheme, Booking dates, Affiliated companies
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Customers’ Names, Contact Details, Account Numbers For The Membership Scheme, Booking Dates, Affiliated Companies and .
Entity Name: Shangri-La Group
Entity Type: Hotel Chain
Industry: Hospitality
Location: Hong Kong
Customers Affected: 290,000
Type of Data Compromised: Customers’ names, Contact details, Account numbers for the membership scheme, Booking dates, Affiliated companies
Number of Records Exposed: 290,000
Personally Identifiable Information: customers’ namescontact details
Most Significant Data Compromised: The most significant data compromised in an incident were customers’ names, contact details, account numbers for the membership scheme, booking dates, affiliated companies and .
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were affiliated companies, customers’ names, account numbers for the membership scheme, booking dates and contact details.
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 290.0K.
.png)
A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This vulnerability affects unknown code of the file /pet1/addcnp.php. This manipulation of the argument cnpname causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.
A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function image_check of the component httpd. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high complexity level is associated with this attack. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited.
A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/update_student.php. This manipulation of the argument stud_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.
A security flaw has been discovered in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/save_user.php. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.
A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument user_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
Get company history
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rapid