Hospitality owner and operator HEI Hotels and Resorts is announcing a data breach impacting at least 20 Starwood, Marriott, Hyatt, and InterContinental Hotels properties.
The company discovered malware on the payment processing system that takes care of purchases at hotel restaurants, bars, spas, and shops.
The breach occurred at the beginning of March — though some properties may have been hit as early as December 2015 — and was active until June 21. It’s believed to have exposed names, card account numbers, expiration dates, and verification codes.
