The infamous Trump Hotels Collection is investigating another possible data breach at three of its North American locations.
Financial institutions have reported patterns of fraud linked to cards used at select Trump Hotel locations over the past 2-3 months. The locations include Trump International Hotel of New York, Trump Hotel of Honolulu, and Trump International Hotel and Tower in Toronto.
Trump Hotels confirmed to SecurityWeek that this is in fact, the second time Trump Hotels has been breached by malicious actors infecting their credit card systems.
In October 2015, Trump Hotels suffered a similar attack and had malware found on computers and payment card terminals of their front desk systems. The investigation found that attackers may have had access to information associated with payment cards used at Trump Hotels between May 19, 2014, and June 2, 2015. Those locations affected include Trump SoHo New York, Trump National Doral, Trump International New York, Trump International Chicago, Trump International Waikiki, Trump International Hotel & Tower in Las Vegas, and Trump International Toronto.
The hospitality industry is the perfect candidate for cyber thieves, and while PCI DSS compliance standards require retailers to implement solutions like System Hardening and File Integrity Monitoring, few actually operate these requirements sufficiently well. According to the Verizon 2014 Data Breach Investigations Report, industries most commonly affected by POS intrusions often include Restaurants, Hotels & Grocery Stores. It’s vitally important that hospitality organizations both large and small take the initiative to implement security solutions like PCI File Integrity Monitoring and Change & Configuration Management within their IT environments to help protect their customer’s credentials & information from a possible breach.
To learn more about NNT’s Change Tracker Gen7, click here to watch the pre-recorded demo overview
Read this article on SecurityWeek