Hotels In 10 States And DC May Have Been Hit By Hackers
by Associated Press, The Big Story
According to the hotel operator HEI Hotels & Resorts, malware put into place in at least 20 locations — including five in California — may have collected names, payment card account numbers, card expiration dates and verification codes.
Data from customers may have been collected from early December, through late June. At some properties, HEI said, data collection may have begun as early as March 2015 at hotel locations where people bought food or drinks.
“We are treating this matter as a top priority, and took steps to address and contain this incident promptly after it was discovered,” HEI said in a company release.
HEI said that once it found out about the problem it transitioned payment card processing to a stand-alone system that’s completely separate from the rest of its network. It disabled the malware and is in the process of reconfiguring various components of its network and payment systems to make them more secure.