Omni Hotels and Resorts Reports Data Breach
On Friday, Omni Hotels and Resorts informed their customers about a data breach that was detected on May 30. Several forms of personal payment information were taken during the malware attack, including credit and debit card numbers, cardholder names, security codes and expiration dates.
The malware attacked the physical point of sale terminals at 49 of their 60 locations in North America, and affected over 50,000 cards. The company has not specified which locations were affected. However, there is no evidence of the breach impacting the company’s online reservation system, which means the only customers affected by the hack would be those who presented their cards at the registers in the hotels and resorts.
Omni Hotels and Resorts said the malware may have been in operation between December 23, 2015 and June 14, 2016, but “most of the systems were affected during a shorter timeframe.” Debit card PINs and customer contact information was not revealed during the breach. The hotel chain says they have worked closely with technology and security firms to ensure the malware was contained and eliminated from their system.
Consumers who stayed at an Omni Hotel during these dates should keep an eye on their credit card and bank statements to monitor for unauthorized payments. Anyone noticing suspicious activity on their card should notify their provider to have the charges reversed and obtain a new card.