Omni Latest Hotel Chain to Suffer Data Breach
July 12, 2016
Late last week, Omni Hotels & Resorts warned customers that payment card information from thousands of cards used at POS terminals at most of its locations was exposed to theft by hackers. The company told customers through a statement on its Website that its systems were compromised over a six-month period from December 2015 to June 2016. According to published reports, more than 80 percent of Omni locations were affected and, so far, account details of more than 50,000 accounts have been sold through illegal online forums.
Omni’s statement said it discovered the attack on May 30 and “immediately engaged leading IT investigation and security firms to determine the facts, and we have now contained the intrusion.” The thieves acquired payment card information that included cardholder name, credit or debit card number, CVV code and expiration date. Social Security numbers and personal contact information such as email or physical addresses was not exposed, according to the company.
A Wall Street Journal report quoted a security expert who investigated the breach for the Dallas-based luxury hotel chain as saying the thieves targeted bars and gift shops at the affected locations, as they did in other high-profile hotel chain intrusions including ones at Hyatt, Starwood and Hilton.