Skip to main content
  1. Home
  2. Computing
  3. Web
  4. News

20 major hotels were hacked by malware, including some Marriott locations

Trevor Mogg
By

sales this weekend
Simpson33/123RF
Despite recent promises by the hotel industry to tackle the damaging issue of malware attacks targeting its point-of-sale systems, it seems the cybercriminals are always able to stay one step ahead.

On Monday, HEI Hotels and Resorts, which operates a number of high-end locations for the likes of Starwood, Marriott, Hyatt, and Intercontinental, said a data breach had hit 20 of its hotels in the U.S.

It was discovered in June on payment systems used by hotel facilities such as restaurants, bars, spas, and lobby shops, HEI spokesperson Chris Daly told Reuters.

The company said the attack could’ve given hackers access to “the payment card information of certain individuals who used payment cards at point-of-sale terminals, such as food and beverage outlets, at some of our properties.”

Information on the specific hotels hit by the malicious software, and when it was active, has been laid out on a special webpage posted by the company so customers can check if they may have been caught up in the attack.

The malware was active from March 1, 2015 through June 21 this year, and hit premises that include 12 Starwood hotels, 6 Marriott International locations, 1 Hyatt site, and 1 InterContinental hotel.

Tens of thousands of transactions took place on the hotels’ targeted point-of-sale terminals, though Daly said it was currently hard to say how many customers had been hit as a single card may have been used multiple times by its owner.

About 8,000 transactions occurred during the affected period at the Hyatt Centric Santa Barbara hotel in California, for example, and about 12,800 at the IHG Intercontinental in Tampa, Florida, Daly told Reuters.

In a statement, HEI offered the usual assurances about taking its responsibility “very seriously,” adding that it has “mounted a thorough response to investigate and resolve this incident, bolster our data security, and support our customers.” The company offers an FAQ page on the incident here.

Cybercriminals who manage to nab credit card data often try to sell it via illicit hacking forums, with buyers hoping to use it for online shopping sprees or to withdraw money from bank accounts.

Editors' Recommendations

This LG robot could soon be serving your restaurant meal
LG's CLOi ServeBot robot.
Google Maps is adding new shopping tools for the holiday season
Person using Google Maps on a smartphone.
Microsoft warns of latest malware attack, explains how to avoid secret backdoor
Privacy security stock photo.
Amazon is planning to open its largest retail stores to date
Amazon logo on the headquarters building.
Intel Arc Alchemist: specs, pricing, release date, performance
A render of Intel's Arc Alchemist desktop GPU.
The YouTube watching experience on TVs just got much better
YouTube on a TV and on the mobile app.
Get this 17-inch HP laptop with Windows 11 for $320 today
The HP 17 Laptop with the Windows 11 interface on the screen.
Grab this cheap printer deal from HP and get 6 months of free ink
The HP Envy 6455e All-in-One Printer on standby, on a white background.
Best wireless mouse deals for September 2022
Logitech MX Master
Cooler Master’s new quantum dot mini-LED gaming monitors look incredible
Cooler Master 27-inch Tempest gaming monitors were announced today and will release later this year.
AMD Ryzen 7000 vs. Intel Raptor Lake
AMD Ryzen processor render.
Dell’s best work-from-home laptop is over $600 cheaper today
The Dell Vostro 3510 laptop with a nature scene on the display.
Creative’s Katana V2X PC soundbar promises the same sound in a smaller footprint
A render of the Katana V2X against a dark background.