11 Hilton Hotel chains affected by data breach - WTVM.com-Columbus, GA News Weather & Sports

11 Hilton Hotel chains affected by data breach

(Source: File video) (Source: File video)
BIRMINGHAM, AL (WBRC) -

Eleven hotel chains operated by Hilton Worldwide are affected by unauthorized malware infiltrating point-of-sale systems. 

Customers who have stayed at the following hotel chains between November 18 to December 4, 2014, or April 21 to July 27, 2015, should review and monitor their payment card statements: Hilton Hotels & Resorts, Waldorf Astoria Hotels & Resorts, Conrad Hotels & Resorts, Curio – A Collection by Hilton, DoubleTree by Hilton, Embassy Suites by Hilton, Hilton Garden Inn, Hampton by Hilton, Homewood Suites by Hilton, Home2Suites by Hilton, and Hilton Grand Vacation. 

Cyber security experts say that infrequent travelers may have been targeted.  

“If you look at the time periods, it could be that they were targeting vacation travelers over the Thanksgiving holidays and then also vacation travelers looking to book sales in 2015,” said Andrea Hoy, International President of Information Systems Security Association. “They’re not your more experienced business travelers who are always doing bookings of hotels.”

A spokesperson for Hilton Worldwide could not estimate how many customers are affected, but said that the information targeted included cardholder names, payment card numbers, security codes, and expiration dates. No addresses or personal identification numbers (PINs) were taken.
 
Marc Anthony, Board Member of Central Alabama Information Security Systems Association, said that a forensic team will have determine exactly how Hilton Worldwide’s cyber security was compromised. He said that the breach could have happened in any number of ways, including a phishing attack or through a third party vendor.  

Anthony said that consumers can take steps to protect themselves this holiday seasons. 

“The biggest thing when you’re shopping in-person is to not use debit,” he said. “Always use your processing as a credit card, whether it be visa or master card, when you do that, it is backed by the issuing company and any fraudulent activity is guaranteed to be compensated back to you.”

Copyright 2015 WBRC. All rights reserved.

Powered by Frankly