Hackers…Checking In


September 30, 2015 | DevOps | joanna mastrocola


The names Trump and Hilton have graced headlines this week… and not for the reasons you may suspect. No, there was no celebrity feud or off-color remark. Both the Hilton Hotel and Trump Hotel Collection have suffered cybersecurity breaches, forcing recent travelers to comb through credit card statements looking for suspicious activity, further augmenting their post-vacation blues.

Untitled_designWe’ve heard these data breach stories time and time again and yet it seems that we, the actual victims, are the only ones paying attention. It forces the question: do companies simply not understand how important data security is? This lack of attention to keeping information secure, puts us, the buyer, in a very difficult position. Normally, if you have a bad experience at one business you can take your business elsewhere, giving their competitor the chance to wow you. However, what do we do in this scenario? We can’t just try out a new hotel or retail chain, because their competitor has most likely had, or is at risk of having, a breach as well if their data isn’t properly secured.

Here’s the latest information on the Hilton Hotel and Trump Hotel Collection security hacks:

This piece on Softpedia says the breach affects guests who stayed at Trump SoHo New York, Trump National Doral and the Trump International locations in New York, Chicago,  Waikiki, Las Vegas, and Toronto between May 19, 2014 and June 2, 2015. It confirms that credit card information like the number, expiration date, and security code were exposed as well as first and last name for guests at select hotel locations.

This piece from The Street discusses both the Hilton and Trump Breaches. It cautions that although these two were publicized, many other hotels are likely being hacked by cybercriminals since the attacks are undetectable and places don’t even realize they are happening. Since hotels are typical destinations for people with money, they are a desirable target, hackers constantly scanning systems for vulnerabilities.

In this article from CSO Online, Dave Lewis writes that enterprises need to do a better job of strengthening their defenses against cybercriminals. He also points out that although Trump Hotels is providing fraud resolution services to guests for the next year to people residing in the U.S. (something mandated by law) international guest are excluded.

According to this piece the Hilton breach may have occurred as early as last November. POS devices from the chains restaurant, coffee bars, and gift shops were potentially effected, putting more than just hotel guests at risk.

This report revelas that Hilton properties such as Embassy Suites, Doubletree, Hampton Inn and Suites, and the Waldorf Astoria Hotels & Resorts are potentially affected by the breach. The articles outlines 3 things you should do if you think your information was compromised.

Looks like it’s time to pull out that tattered sleeping bag and tent and vacation the good, old-fashioned way, sans credit cards…and 5 star amenities.





Keep up-to-date on security best practices, events and webinars.

Share This