Hilton Worldwide has released a statement on November 24, 2015 related to malware that impacted payment systems. The company determined that malware did indeed hit some point of sale payments in Hilton Worldwide’s business. The Hilton malware might have payment cardholder’s names, card numbers, expiration dates, and security codes. They do not have addresses or PIN numbers.
The problem is related to Hilton payments made to point of sale systems between November 18, 2014 to December 5, 2014 and April 21, 2015 to July 27, 2015. Customers should keep a close eye on the statements for their credit cards or other payment cards, that were used for purchases related to Hilton or its businesses during that time period.
It was also reported on November 20, 2015 by Starwood Hotels and Resorts that malware designed to steal payment card numbers made its way into point of sale systems for 54 of its hotels between November 2014 and October 2015. In addition to the card numbers, the statement released by Starwood states that the malware might have collected cardholder’s names, expiration dates and security codes.
In January, it was reported that the Hard Rock Las Vegas’s computer system had been tampered with, and criminals were able to obtain sensitive credit card and debit card information from the period between September 2014 and April 2015. Hackers may have obtained credit card numbers and codes from their illegal acts.
Like the Hard Rock Cafe, Hilton is offering free credit monitoring for a year. Visit http://hiltonworldwide.com/guestupdate for information on that.
Hilton states that it has strengthened its systems and has taken steps to remove the malware.