2016 InterContinental Hotels Breach Much Worse than Believed

2016 InterContinental Hotels Breach Much Worse than Believed

April 19, 2017         Written By Bill Hardekopf

In February, InterContinental Hotels Group (IHG) reported they had suffered a data breach between August and December, 2016 that affected 12 locations.

IHG, which is the parent company of Candlewood Suites, Crowne Plaza, Holiday Inn and Kimpton Hotels and Resorts, has now said in a statement the number is actually closer to 1,200. A full list of affected locations is available on their website.

The hotel chain first learned of the incident in late December and hired cybersecurity professionals to help them investigate the situation. They discovered that cybercriminals had installed malware on the hotels’ payment card processing servers, which allowed the hackers to steal credit card holder names, numbers and internal verification codes.

“The investigation identified signs of the operation of malware designed to access payment card data from cards used onsite at front desks at certain IHG-branded franchise hotel locations between September 29, 2016 and December 29, 2016. Although there is no evidence of unauthorized access to payment card data after December 29, 2016, confirmation that the malware was eradicated did not occur until the properties were investigated in February and March 2017,” the company said in a release.

To help eradicate the malware from franchised properties, IHG is offering them free computer forensic help and is asking all locations to install the Secure Payment Solution (SPS), which encrypts cardholder information.

For affected visitors, IHG is offering free credit monitoring software for a year.

This was the second data breach that struck IHG properties last year. In September, subsidiary Kimpton Hotels reported that malware had been installed on the payment terminals at over 60 of their locations.

The information contained within this article was accurate as of April 19, 2017. For up-to-date
information on any of the terms, cards or offers mentioned above, visit the issuer's website.


About Bill Hardekopf

Bill Hardekopf is the CEO of LowCards.com and covers the credit card industry from all perspectives. Bill has been involved with personal finance for over 15 years. He is a frequent contributor to Forbes, The Street and The Christian Science Monitor.
View all posts by Bill Hardekopf
Featured Low Interest Card
Top Features : 1.25X miles on every purchase; no annual fee; bonus of 20,000 miles once $1,000 is spent in first 3 months
Featured Cash Back Card
Top Features : No Annual Fee, Bonus Offer, Cash Back
Featured No Annual Fee Card
Top Features : Earn cash back twice. 1% when you buy plus 1% as you pay; 0% APR for 18 months on balance transfers
Featured Bad Credit Card
Top Features : No Annual Fee; Cash Back match at the end of your first year; Social Security Alerts
Featured Fair Credit Card
Top Features : No annual fee; access to higher credit line after making first 5 monthly payments on time
Featured Limited/No Credit
Top Features : No annual fee; reports to major credit bureaus; access to higher credit line after making first 5 monthly payments on time