Nearly 1,200 InterContinental hotels hit in data breach

Nearly 1,200 InterContinental hotels hit in data breach

The data breach, which led to the theft of guests’ credit card information who stayed at hotels under the InterContinental Hotel Group, was much bigger than previously announced earlier, with almost 1,200 hotels affected.

“The investigation identified signs of the operation of malware designed to access payment card data from cards used onsite at front desks at certain IHG-branded franchise hotel locations between September 29, 2016 and December 29, 2016,” said InterContinental Hotel Group in a statement.

The company operates more than 5,000 hotels across 100 countries. Those hotels breached included household names such as InterContinental, Holiday Inn, Crown Plaza and Hotel Indigo chains.

Credit card stealing #malware: 1200 #InterContinental hotels breached | https://t.co/IBVn24nPYg#Security#Hacking#Hotels#Breachpic.twitter.com/RaAQfJ4O7K

— HackRead (@HackRead) April 20, 2017

The breach was discovered after hotel guests reported unauthorized fraudulent charges on cards previously used at a number of US hotels owed by IHG.

The hotel group said malware searched for track data – cardholder name, card number, expiration date and internal verification code - and read from the magnetic stripe of a payment card as it was being routed through the affected hotel server.

The malware did now show signs of activity after December 29 but it was not eradicated from cash registers until March 2017.

The company noted there was no indication other guest information was affected.
Card-stealing cyber thieves have broken into some of the largest hotel chains over the past few years, according to Krebs On Security.

Krebs: InterContinental Hotel Chain Breach Expands: In December 2016, KrebsOnSecurity broke the news that fraud… https://t.co/1Zzo0NIFkFpic.twitter.com/7HrUaawJHn

— SecurityGopher (@SecurityGopher) April 19, 2017

Hotel brands that have acknowledged card breaches over the last year include Kimpton Hotels, Trump Hotels (twice), Hilton, Mandarin Oriental, and White Lodging (twice). Card breaches also have hit hospitality chains Starwood Hotels and Hyatt.

In many of these breaches, thieves plant malicious software on point-of-sale devices via a hacked remote administration tool. Once the attackers have their malware loaded they remotely capture data from each card swiped at the cash register.

New York data breaches hit all-time high as 1.6mn users’ records exposed https://t.co/OCyuN18sCOpic.twitter.com/ZhQwQCsE4r

— RT America (@RT_America) March 21, 2017

Thieves can then sell that data to crooks who specialize in encoding the stolen data onto any card with a magnetic stripe, and using the cards to purchase high-priced electronics and gift cards from big-box stores like Target and Best Buy.



Add Comment

all comments

  Other news

more
Small business: FBI warns of spreading W-2 email theft scheme

Small business: FBI warns of spreading W-2 email theft scheme..

22-Aug, 01:40

The IRS is warning businesses about a sharp increase in email phishing...

'Historic' flash floods in Kansas City leave people stranded

'Historic' flash floods in Kansas City leave people stranded..

22-Aug, 16:40

Flash flooding caused by three rounds of heavy rain storms drenched...

Want to be funnier?

Want to be funnier?..

22-Aug, 14:40

The winner of the best joke award at this year's Edinburgh Festival...

More than 30 people injured in Pennsylvania train crash (VIDEO)

More than 30 people injured in Pennsylvania train crash (VIDEO)..

22-Aug, 03:40

Some 30 people have been taken to hospital after a train ploughed into an...

Sleepy Drivers Can Doze Unknowingly

Sleepy Drivers Can Doze Unknowingly..

06-Mar, 00:44

First, a confession: I have driven when I was sleepy, really sleepy. ...

Kesha laughs off being hug-snubbed by Jerry Seinfeld

Kesha laughs off being hug-snubbed by Jerry Seinfeld..

07-Jul, 12:13

Kesha is laughing off her hug-snub by Jerry Seinfeld. Kesha, 30, tried...

Bono honors Rep. Scalise at U2 concert

Bono honors Rep. Scalise at U2 concert..

21-Jun, 03:36

Rep. Steve Scalise got a shout-out from U2 frontman Bono during one of...

New Zealanders Refloat 100 Pilot Whales After 400 Stranded

New Zealanders Refloat 100 Pilot Whales After 400 Stranded..

10-Feb, 19:58

Volunteers in New Zealand managed to refloat about 100 surviving pilot...