Point of Sale (POS) remains the easiest target for malware intrusions for data theft with HEI Hotels and Resorts becoming the latest victim to unscrupulous hackers.
HEI, which operates the famous Hyatt, Sheraton, Marriott and Westin hotels, has admitted that its point-of-sale (POS) systems have been hacked losing data, including customer names, payment card numbers, expiry dates and verification codes from tens of thousands of transactions.
The company, which listed the affected hotels on its webpage, said the systems could have been breached as early as March 2015, a media statement said.
HEI spokesman Chris Daly told Reuters that it is difficult to determine just how many people were affected during this time period, though, as consumers may have used their cards more than once.
We are treating this matter as a top priority, and took steps to address and contain this incident promptly after it was discovered,” the statement said.
HEI discovered the malware while it was performing a system upgrade in early to mid-June. They hired outside experts to investigate the breach and contacted law enforcement. The company reports that the malware has been disabled, and their systems are being upgraded to make them more secure. At this time, the company said it is safe for customers to use their cards at all hotels.
Customers are being advised to check their credit card statements for fraudulent activity if they stayed at one of these hotels. As yet, the company has not offered free credit monitoring to affected customers.