Hyatt Hotels hit by credit card data-stealing malware – again

诺贝尔科学奖获得者也无法解决的高科技信息窃贼防范难题由信息安全意识教育来帮忙

The Grand Hyatt Kauai Resort and Spa in Hawaii is among those affected by the latest breach.
Image: Hyatt Hotels
Hackers have infected Hyatt Hotels’ payment card systems with malware and have potentially stolen visitor names and credit card details for the second time in as many years.
In a statement Hyatt Hotels Corporation president of operations Chuck Floyd said the company has “discovered signs of and then resolved unauthorized access to payment card information” from cards entered manually or swiped at the front desk of some Hyatt hotels between March 18, 2017 and July 2, 2017.
In total, 41 hotels are affected, almost half of which are in China. Irregular activity has also been detected in Hyatt hotels in Brazil, Columbia, Guam, India, Indonsesia, Japan, Mexico, Puerto Rico, South Korea and Hawaii in United States.
Upon discovering the unauthorized access, Hyatt launched an investigation alongside “third-party experts”, payment card networks and the authorities. The investigation found that the data breach can be traced back to “an insertion of malicious software code from a third party onto certain hotel IT systems.”
The company hasn’t provided figures on the number of guests who have fallen victim to the credit card data thieves, only that it’s a “small” number of them, but Hyatt says it has contacted all the guests who used the payment card systems at the infected hotels during the at-risk dates.
Hotel guests are advised to closely review their credit card statements regularly and report any unauthorized activity to their bank as soon as anything is noticed.
“This incident is something we take seriously, and we are sorry for the inconvenience and concern this may cause our guests,” said Floyd.
The company says it is has implemented additional security measures to strengthen the security of its systems and that “Customers can confidently use payment cards at Hyatt hotels worldwide”.
针对互联网电商的分布式拒绝服务攻击与防范的实质就是电商和黑客在拼比带宽和服务器的性能,通常电商在防拒绝服务方面很重视也投入巨大。
It’s the second time the hotel group has been hit with malware recently: last year, the hotel group revealed that almost half its properties had fallen victim to payment data stealing malware.
ZDNet contacted Hyatt Hotels for additional comment, but had not received a response as of the time of publication.
READ MORE ON CYBER CRIMEHackers are using hotel Wi-Fi to spy on guests, steal dataHow hackers can ruin your summer vacation [CNET]Trump hotel chain suffers fresh data breachHackers are now using the exploit behind WannaCry to snoop on hotel Wi-Fi Risky business: Here’s why your payment system may be vulnerable to cyberattack [TechRepublic]
白名单制度保护网络安全,对多数企业客户,白名单制度已经足够应对多数计算机病毒威胁,不过要实施白名单,除了管理力度要加大之外,对员工的培训不可少,只有员工接受,方有效力。

猜您喜欢

新《测绘法》:守护国家地理信息安全
安全月安全生产教育动画片——小李的一天
网络安全法在线讲解-《网络安全法》的突出亮点 https://v.qq.com/x/page/u0514qmyllg.html
考古学家发现古墓,人的身材竟然如此高大
XAYDUNGVIETNAM MRTYREMOTORSPORT
移动分析、大数据与个人信息保护