14 DAY TRIAL // Hilton Worldwide, the endless source of all of Paris Hilton's money, has just released a statement announcing a data breach caused by malware that targeted its PoS (Point of Sale) system.
Hilton Worldwide is one of the world's largest hotel chains, operating hotel brands like Hilton Hotels & Resorts, Waldorf Astoria, Hampton, Conrad, Embassy Suites, Canopy, Home2 Suites, and many other more.
According to the company, between November 8 and December 5, 2014, and between April 21 and July 27, 2015, customers that stayed at its properties may have had some of their credit card details stolen via malware installed on its PoS systems.
Hilton representatives has not said what properties and what kind of PoS systems were affected, but security blogger Brian Krebs has found out that: (1) properties like Hilton Hotels & Resorts, Embassy Suites, Doubletree, Hampton Inn and Suites, and Waldorf Astoria Hotels & Resorts were affected; and that (2) PoS systems used in the hotels' restaurants, coffee shops, and gift shops were the ones infected.
Third time in the last three months when a hotel chain was affected by PoS malware
According to preliminary investigations, the malware recorded and stole customer info like the cardholder name, card number, security code (CVV), and its expiration date. Data like the client's home address or PIN code was not compromised.
Similar incidents attributed to PoS malware have happened quite often in recent months, at various hotel chains. Two of the biggest affected Starwood Hotels & Resorts and the Trump Hotel Collection.
“This news is unsettling, especially as millions of Americans are preparing to travel for the upcoming Thanksgiving holiday," said security expert Kevin Watson, CEO at Netsurion, a provider of remotely-managed security solutions for multi-location businesses. "It’s a harsh reminder that no business is immune to cybercriminals, and it’s especially important during the holiday season for merchants, retailers, hotels and hospitality businesses that process payment data to understand that they are lucrative targets."