Holiday Inn hotels hit by card payment system hack

April 20 15:37 2017 Print This Article

The owner of the Holiday Inn and Crowne Plaza hotel brands has disclosed that payment card-stealing malware has struck about 1,200 of its franchisees’ properties.

UK-based Intercontinental Hotels Group (IHG) said all but one of the locations affected were in the US, with the other being in Puerto Rico.

Guests have been warned they could have had money stolen as a consequence.

One expert said there might be further hotels affected.

Buckinghamshire-based IHG had previously reported in February that a dozen US hotels that it managed itself had been affected by the same attack.

“Individuals should closely monitor their payment card account statements,” a spokeswoman told the BBC following the latest discovery.

“If there are unauthorised charges, individuals should immediately notify their bank.

“Payment card network rules generally state that cardholders are not responsible for such charges.”

Other affected brands include Hotel Indigo and Candlewood Suites.

Hijacked card data

IHG said an investigation had detected signs the malware had been active at front-desk payment locations at the hotels between 29 September and 29 December 2016.

However, it only has confirmation that the threat was definitely eradicated last month.

The attack hijacked information taken from the payment cards’ magnetic strips as it was being routed through the hotels’ computer servers, said the hotel group.

This could include the card number, expiration date and verification code.

IHG does not believe other guest information was stolen.

It has published a tool for visitors to check if hotels they stayed at are among those affected.

The firm notes that other franchisees that had adopted an encryption-based security measure would not have been affected.

But one cybersecurity expert said that the list might not be comprehensive.

“IHG has been offering its franchised properties a free examination by an outside computer forensic team,” wrote Brian Krebs.

“But not all property owners have been anxious to take the company up on that offer.

“As a consequence, there may be more breached hotel locations yet to be added to the state look-up tool.”

Other hotel chains to have been struck by payment system hacks in recent years include Hyatt, Mandarin Oriental and Trump Hotels.

The US has been slower to switch to a chip-and-pin system than many other countries, which makes it more difficult to carry out such attacks.

The original article (and image) was originally posted here:

view more articles

About Article Author

GDPR Associates
GDPR Associates

View More Articles
write a comment


  1. student loans
    April 29, 02:20 #1 student loans

    I like what you guys are up too. This sort of clever work and coverage! Keep up the fantastic works guys I’ve included you guys to my blogroll.

    Reply to this comment
  2. Codilla
    May 04, 19:58 #2 Codilla

    Hi, I do think this is an excellent web site. I stumbledupon it 😉 I’m going to revisit once again since I saved as a favorite it. Money and freedom is the greatest way to change, may you be rich and continue to help others.

    Reply to this comment
  3. Roner12082
    May 05, 08:27 #3 Roner12082

    This is a topic that is near to my heart… Take care!

    Reply to this comment
  4. jimk
    May 05, 19:17 #4 jimk

    Hello! This is my first visit to your blog! We are a team of volunteers and starting a new initiative in a community in the same niche. Your blog provided us beneficial information to work on. You have done a outstanding job!

    Reply to this comment
  5. sasti
    May 06, 06:43 #5 sasti

    I am now not sure the place you are getting your information, however good topic. I must spend some time studying much more or understanding more. Thank you for great information I used to be searching for this info for my mission.

    Reply to this comment
  6. gbxnvik
    May 06, 09:54 #6 gbxnvik

    Wonderful blog! I found it while searching on Yahoo News.

    Reply to this comment
  7. Sciallo5
    May 17, 13:48 #7 Sciallo5

    I don’t ordinarily comment but I gotta state regards for the post on this special one : D.

    Reply to this comment
  8. borvestinkral
    June 02, 07:52 #8 borvestinkral

    Perfect work you have done, this website is really cool with superb info .

    Reply to this comment
  9. Frederic
    August 05, 06:37 #9 Frederic

    Great post. I ‘m confronting a couple of these

    Reply to this comment
  10. Reuben
    August 05, 22:52 #10 Reuben

    EXCEPTIONAL Post.thanks for sharing

    Reply to this comment

Add a Comment