Menu
Suspected data breach at Holiday Inn, Marriott hotels

Suspected data breach at Holiday Inn, Marriott hotels

A large hotel management company says attackers may have compromised its point-of-sale devices

White Lodging, which runs hotels under the brands Holiday Inn, Marriott and Renaissance, said Monday customers at its restaurants and lounges within its hotels may have had their payment card details compromised.

White Lodging, which runs hotels under the brands Holiday Inn, Marriott and Renaissance, said Monday customers at its restaurants and lounges within its hotels may have had their payment card details compromised.

Lodgers at Holiday Inns, Marriott and Renaissance hotels may have had their payment card details compromised following a new disclosure on Monday of suspected point-of-sale device attacks.

White Lodging Services, a hotel management company, warned in a news release it suspects point-of-sale systems at restaurants and lounges on 14 of its properties were compromised between March 20, 2013 and Dec. 16, 2013.

Guests who did not use their card at restaurants and lounges, as well as those who used their room account for purchases from those outlets, were not affected, it said.

The Merrillville, Indiana-based company said it manages hotels under agreement with hotels owners and is a separate entity from the specific hotel brands it operates.

The company said it has contacted federal law enforcement and initiated a forensic review of its properties. It runs more than 169 hotels in 21 U.S. states.

"We deeply regret and apologize for any inconvenience caused by this incident and remain committed to protecting all information entrusted to us by our guests," it said.

White Lodging last week told the New York Times it was investigating a potential security breach, covered in a report from security writer Brian Krebs.

It is the latest company following Target, Neiman Marcus and Michaels to either confirm or disclose a suspected breach, as security experts warn dozens of companies worldwide may be affected.

The unfolding disclosures have drawn the attention of the U.S. Congress. The House Energy and Commerce Committee is scheduled on Wednesday to hear from senior executives from Target and Neiman Marcus along with the U.S. Secret Service about how data breaches can be prevented.

Attackers are planting malicious software, known as "RAM scrapers," on POS devices, which capture unencrypted card details after a customer has swiped a card, defeating other security measures in place intended to protect sensitive details.

White Lodging said customers' names as printed on credit or debit cards, the card numbers, the cards' security code and expiration dates may have been unlawfully accessed.

Financial institutions have reissued some payment cards and are monitoring other credit and debit cards for unauthorized activity, the company said.

White Lodging listed the 14 affected facilities in the states of Illinois, Texas, Pennsylvania, Colorado, Texas, Indiana, Virginia, Kentucky, Florida and Colorado. It includes seven Marriott, two Holiday Inn and two Renaissance hotels, plus one Sheraton, one Westin and one Radisson hotel.

At its Radisson Star Plaza site in Merrillville, a property management system used at the front desk may have been affected in addition to a point-of-sale system, White Lodging said.

The company also runs upmarket hotels such as Hilton, Hyatt and Intercontinental with others bearing the Preferred Hotel Group, Starwood Hotels and Resorts and Carlson Rezidor Hotel Group brands.

Send news tips and comments to jeremy_kirk@idg.com. Follow me on Twitter: @jeremy_kirk

Follow Us

Join the New Zealand Reseller News newsletter!

Error: Please check your email address.

Tags White Lodging Servicesintrusionsecuritydata breachdata protectionmalwarefraud

Featured

Slideshows

Educating from the epicentre - Why distributors are the pulse checkers of the channel

Educating from the epicentre - Why distributors are the pulse checkers of the channel

​As the channel changes and industry voices deepen, the need for clarity and insight heightens. Market misconceptions talk of an “under pressure” distribution space, with competitors in that fateful “race for relevance” across New Zealand. Amidst the cliched assumptions however, distribution is once again showing its strength, as a force to be listened to, rather than questioned. Traditionally, the role was born out of a need for vendors and resellers to find one another, acting as a bridge between the testing lab and the marketplace. Yet despite new technologies and business approaches shaking the channel to its very core, distributors remain tied to the epicentre - providing the voice of reason amidst a seismic industry shift. In looking across both sides of the vendor and partner fences, the middle concept of the three-tier chain remains centrally placed to understand the metrics of two differing worlds, as the continual pulse checkers of the local channel. This exclusive Reseller News Roundtable, in association with Dicker Data and rhipe, examined the pivotal role of distribution in understanding the health of the channel, educating from the epicentre as the market transforms at a rapid rate.

Educating from the epicentre - Why distributors are the pulse checkers of the channel
Kiwi channel reunites as After Hours kicks off 2017

Kiwi channel reunites as After Hours kicks off 2017

After Hours made a welcome return to the channel social calendar last night, with a bumper crowd of distributors, vendors and resellers descending on The Jefferson in Auckland to kickstart 2017. Photos by Maria Stefina.

Kiwi channel reunites as After Hours kicks off 2017
Arrow exclusively introduces Tenable Network Security to A/NZ channel

Arrow exclusively introduces Tenable Network Security to A/NZ channel

Arrow Electronics introduced Tenable Network Security to local resellers in Sydney last week, officially launching the distributor's latest security partnership across Australia and New Zealand. Representing the first direct distribution agreement locally for Tenable specifically, the deal sees Arrow deliver security solutions directly to mid-market and enterprise channel partners on both sides of the Tasman.

Arrow exclusively introduces Tenable Network Security to A/NZ channel
Show Comments