Landry's and Golden Nugget Hotels and Casinos, which operate, own or manage more than 500 venues internationally, have completed an investigation into a recent widespread data breach at many of their establishments. Reports first surfaced in early December 2015 regarding suspicious activity on payment cards that had been used at their venues. The companies have determined that hackers installed a program on card-processing devices at many U.S. restaurants, spas, entertainment outlets and managed properties under the companies' jurisdiction.
The breach affected more than 300 outlets nationwide, among them popular restaurants such as Morton's, McCormick & Schmick's and Landry's Seafood, as well as many Golden Nugget outlets and the Galveston Convention Center. Data obtained from the breach may have included cardholder names, card numbers, expiration dates and internal verification codes. The affected time periods vary by establishment and location, but there were three time frames: May 4, 2014 - March. 15, 2015; May 5, 2015 - Dec. 3, 2015; and, to a lesser extent, March 16, 2015 - May 4, 2015. A full list, detailing specific properties and time frames, is available at bit.ly/1KnPTPO
Upon wrapping up the investigation, along with security experts and law-enforcement officials, Golden Nugget and Landry's have implemented enhanced security measures, including end-to-end encryption. They also are working with the payment companies to notify cardholders who might have been affected, and notifying them by mail or email when possible.
The companies advise anyone who might have used a payment card at the affected facilities during the specified time frames to review their card statements thoroughly for any suspicious activity. Any such activity should be promptly reported to the card issuers.