Omni Hotels & Resorts is the latest lodging company to be hit by hackers. The company notified customers that it has been investigating a malware intrusion that affected point-of-sale systems at some of Omni's 60 hotels, although the company's statement did not specify which properties were affected. The breach occurred during different time periods depending on the property, though in total it appears to have lasted from Dec. 23, 2015, until June 14, 2016. The company began investigating the malware attacks on May 30.
The malware itself was designed to collect payment card information, including cardholder name, credit-/debit-card number, security code and expiration date. There is no evidence to suggest that any other information was acquired, including reservation info, Select Guest profiles, contact information or Social Security numbers.
The problem occurred at point-of-sale systems in the hotels themselves, which means it should only affect cards that were physically presented at a retail or F&B outlet in an Omni hotel. Not all cards presented were affected, but Omni advises customers who handed their card to a server or cashier to review and monitor statements "out of an abundance of caution."
More information concerning free identify-theft protection for those involved has been posted here.