Hilton Worldwide is investigating claims that hackers breached point-of-sale registers at a large number of its U.S. properties between April and July of this year. As reported by security expert Brian Krebs on his site, krebsonsecurity.com, banking industry sources indicated that many cases of Visa card fraud from that period occurred after payments were made at restaurants or gift shops at Hilton properties. Affected brands included Hilton Hotels, DoubleTree, Embassy Suites, Hampton Inn & Suites and Waldorf Astoria.
"Hilton Worldwide is strongly committed to protecting our customers' credit-card information," a Hilton spokesperson said in a written statement. "We have many systems in place and work with some of the top experts in the field to address data security. Unfortunately, the possibility of fraudulent credit-card activity is all too common for every company in today's marketplace. We take any potential issue very seriously, and we are looking into this matter." No further updates were available from the lodging giant.
As with recent breaches involving White Lodging Services (see M&C's coverage here) and Mandarin Oriental (find M&C's coverage here), the fraud appears to have affected only guests who used credit cards at on-site retail registers vs. solely for guest-room payments.