Strawberry' IT systems were hit by a virus attack on the night of 2 December. The attack primarily affected the hotel systems that handle reservations, check-in, check-out and creation of new room keys.

NCH logo

Our investigations show that the hackers gained access to some employee data from our internal administrative systems during the IT attack on December 2. We regret to inform you that parts of that data have gone astray. This can include data about former employees, who have left the company during the last few years.

Information that may be affected is your name and contact information (telephone, social security number (personal number) and e-mail), as well as any other information about your employment relationship.

We can not guarantee that this information is or may be made available online. If this happens, you could potentially be the victim of fraud or attempted misuse. As always, we ask you to be conscious of suspicious text messages, phone calls and emails.

We work continuously to handle the situation and apologize for the inconvenience this causes for you. If you have further questions about the incident, you can contact us at and we will help you.


What kind of information could the hackers have obtained?

This may include your name, telephone number, email, personal ID number and other personal information about your employment.

What can that mean for me?

Similar virus attacks towards other corporations proves that in some cases, data that has been compromised in the virus attacks has been taken by the group performing the virus attack. Therefore, we cannot rule out that the information may be made available on the internet. If this information would be made public on the internet, you could potentially be the target of fraudulent practices. We ask you to stay conscious about suspicious text messages, phone calls and/or emails.

What security measures can you take yourself?

Always be aware of suspicious inquiries via text messages, phone calls and emails. It is recommended, as always, not to release information if you are not sure who the recipient is. If you use relatively simple passwords, and the same password in several places, we recommend that you change these to strong passwords that are not reused, and two-factor authentication for e-mail accounts where applicable, so as to prevent someone from potentially gaining access.

What do I do if I receive a suspicious text message, email or phone call?

On a general basis, you should be skeptical and ignore it. More information on how you can protect yourself against fraud can be found here: If you want to report the case, you can read how to do it here:

Can you say something more about the risk of identity theft and attempted fraud?

We can not determine with 100 percent certainty whether the data has only been accessed and further encrypted, or whether the data has been downloaded and could potentially go astray. Therefore, we can not rule out that there is a risk that this may happen.

If the virus has gained access to data that becomes available on the Internet, you could theoretically be exposed to attempted fraud or attempted misuse. We ask you to be aware of suspicious text messages, phone calls and emails. If you suspect online fraud or ID theft, you should report this to the police.

What are you doing to ensure that your systems are secure in the future?

We continuously make changes and upgrades in our IT Infrastructure and work with good advisers to ensure that we constantly close security gaps when we gain knowledge about these. This has always been a prioritized area for us and it will continue to be so.