Hotels in 10 States and DC May Have Been Hit by Hackers | NBC Bay Area
National & International News
The day’s top national and international news

Hotels in 10 States and DC May Have Been Hit by Hackers

    processing...

    NEWSLETTERS

    AP
    This Feb. 1, 2010, file photo, shows The Westin Philadelphia hotel in Philadelphia. Hyatt, Sheraton, Marriott and Westin hotels in 10 states and the District of Columbia may have been targeted by hackers for months. Hotel operator HEI Hotels & Resorts, said on Aug. 15, 2016, that malware put into place in at least 20 locations may have collected names, card account numbers, card expiration dates and verification codes. (AP Photo/Matt Rourke, File)

    Hyatt, Sheraton, Marriott and Westin hotels in 10 states and the District of Columbia may have been targeted by hackers for months. 

    According to the hotel operator HEI Hotels & Resorts, malware put into place in at least 20 locations may have collected names, card account numbers, card expiration dates and verification codes. 

    Data from customers may have been collected from early December, through late June. At some properties, HEI said, data collection may have begun as early as March 2015 at hotel locations where people bought food or drinks. 

    HEI said in a company release that "We are treating this matter as a top priority, and took steps to address and contain this incident promptly after it was discovered." 

    How to Protect Yourself From Hackers

    [NATL] How to Protect Yourself From Hackers
    Thursday's news that Yahoo suffered a hack of 500 million of its user accounts may have many people taking a new look at how to keep their own email accounts and personal information secure. One easy way to protect yourself from hackers is by regularly updating your software. "Hackers are always finding new vulnerabilities to exploit," said Consumer Reports Editor Jerry Beilinson. (Published Friday, Sept. 23, 2016)

    HEI said that once it found out about the problem it transitioned payment card processing to a stand-alone system that's completely separate from the rest of its network. It disabled the malware and is in the process of reconfiguring various components of its network and payment systems to make them more secure. 

    The company said it's continuing to cooperate with the law enforcement investigation and coordinating with banks and payment card companies. 

    Anyone who used a card at HEI hotels in the given time frame should review their account statements and look for discrepancies or unusual activity, both over the past several months and going forward, the company said. Customers who notice anything out of place should contact their credit or debit card issuer.

    Starwood's Westin hotels in Minneapolis; Pasadena, California; Philadelphia; Snowmass, Colorado; Washington, D.C.; and Fort Lauderdale, Florida, were affected. Also breached were Starwood properties in Arlington, Virginia; Manchester Village, Vermont; San Francisco; Miami; and Nashville, Tennessee.

    Sean Rayford/Getty Images

    Customers may also visit www.heihotels.com/notice for additional information about the incident. 

    The company says the breach has been contained and customers can safely use cards at all of its properties.