Skip the navigation Computerworld * Subscribe to a Newsletter * Solution Centers + Client Solutions for the Efficient Enterprise + Disaster Recovery Zone + HP Blade Servers + Integrated File & Content Tiering + Masters of Business Analytics + Mobile Management + Solving Evolving Information Management Challenges + VirtualizationVision + Xerox Managed Print Services + View all Solution Centers * Events + Face-to-Face + Virtual * Magazine + Latest Issue + Subscribe + Subscriber Services * Twitter * Facebook * RSS ____________________ Submit * Topics + Operating Systems + Networking + Mobile and Wireless + Security + Storage + Data Center + Hardware + Applications + Internet + Management and Careers + Government/Industries + All Topics * News * In Depth * Reviews * Blogs + Featured Blogs + IT Blogwatch + Jonny Evans + JR Raphael + Mitch Wagner + Preston Gralla + Richi Jennings + Robert L. Mitchell + Steven J. Vaughan-Nichols + All Bloggers * Opinion * Shark Tank * IT Jobs * White Papers * Webcasts * More + Enterprise IT + Hot Topics + IT Finance + IT Government + IT Health Care + Shark Bait + Video Security * App Security| * Business Continuity| * Cybercrime and Hacking| * DRM and Legal Issues| * Data Security| * Malware and Vulnerabilities| * Privacy| * Security Hardware and Software Home > Security News Hotel operator warns of data breach Attacks on point of sale systems at several upscale hotel and resort properties may have exposed card data on 3,400 customers By Jaikumar Vijayan September 9, 2010 04:42 PM ET Comments (0) Recommended (5) Facebook Twitter Share Computerworld - HEI Hospitality, owner and operator of upscale hotels operating under the Marriott, Sheraton, Westin and other monikers, has sent letters informing some 3,400 customers that their credit card data may have been compromised. The warning stems from an intrusion into point of sale systems at several HEI properties earlier this year, which could have allowed card holder data being to be illegally accessed, the company said in the letter. The intrusion could have exposed to hackers a variety of information, including credit card types, credit card numbers, expiration dates and security codes stored in the magnetic stripe on the back of each card. The intrusions occurred between March and April, and the company sent out notification letters in August. The breach appears to have stayed largely under the media radar until it was reported this week by Databreaches.net. A HEI spokesman today said that though the company has notified 3,400 customers, there is no indication so far that the credit card data has been misused. A copy of the HEI letter posted on the Web site of New Hampshire's Attorney General indicates that properties in several states were impacted by the breach. Those include the Algonquin Hotel in Manhattan, five Marriott hotels and five properties in the Starwood chain operating under as Sheraton, Westin and other brands. In each case, hackers may have accessed the payment card data between March 25 and April 17 via the compromised point of sale systems. The hackers also compromised the property management system at the Algonquin Hotel, according to the letter signed by Troy Waterman, HEI's senior vice president of finance. HEI is offering affected customers a year's worth of credit monitoring services for free. Attacks against point of sale systems have been an area of growing concern for the Payment Card Industry Security Standards Council, the body that administers the payment industry's PCI security rules. The council earlier this year released new security requirements that all vendors of payment card devices are required to implement in the near-term. The requirements are designed to bolster security on retail point-of-sale card readers and include one that would enable the secure reading and encryption of sensitive cardholder data at the point where a credit or debit card is swiped. Robert McMillan of the IDG News Service contributed to this story. Jaikumar Vijayan covers data security and privacy issues, financial services security and e-voting for Computerworld. Follow Jaikumar on Twitter at Twitter @jaivijayan, or subscribe to Jaikumar's RSS feed Vijayan RSS . His e-mail address is jvijayan@computerworld.com. Read more about Cybercrime and Hacking in Computerworld's Cybercrime and Hacking Topic Center. Comments (0) | Add yours Recommended (5) Facebook Twitter Share Email Print [clear.gif] data breach Additional Resources ESG - What's Needed for Cloud Computing WHITE PAPER ESG - What's Needed for Cloud Computing Just what is cloud computing anyway? Skeptics might say it is nothing but industry hyperbole, visionaries might say it is the future of IT. In reality, both statements are true - cloud computing has been embellished by the tech industry but it does hold real potential for new types of on-demand dynamic IT services. This paper seeks to clarify the definition of cloud computing, identify how far along users are in terms of cloud deployment, and examine the role of the network in the cloud computing model. Driving Storage Efficiency in SAN Environments WHITE PAPER Driving Storage Efficiency in SAN Environments This ESG paper outlines the considerations for architecting an efficient SAN data storage infrastructure with a focus on the NetApp solutions for increased utilization, improved performance and streamlined protection to reduce operational costs. Get a Quick ROI from Being Green WEBCAST Get a Quick ROI from Being Green The menu of green initiatives is long, but how do you get an early win with a solid ROI? Enterprise Print Services address sustainability issues well beyond paper usage. Learn how you can get an assessment of enterprise printing to identify underutilized devices, reduce energy consumption, cut waste, and free-up valuable space. What People Are Saying 0 comments | Add new See all comments (0) | Add new Top Stories * Microsoft plans double-sized Patch Tuesday next week * Epic failures: 11 infamous software bugs * Following criticism, U.S. suspends foreign aid for outsourcing * Apple blinks on dev tool restrictions Security White Papers A Step By Step Guide For Growing Businesses: Filling In Security Gaps Part 3 of this 3-part white paper series looks at which controls are the best fit for your organization and the order that... A Step By Step Guide For Growing Businesses: Customizing The Security Essentials For Your Business This 3-part series paper is designed to help SMB companies address their security needs while remaining within in their budget. It sets out... A Three Stage Approach to Security This 3-part series paper is designed to help SMB companies address their security needs while remaining within in their budget. It sets out... Protect the Data: Best Practices for Security Policies Blogs. Twitter. Facebook. Technologies once thought to be solely for entertainment purposes are now at the forefront of business. With users blurring the... Secure Your Email Today: Free 30-Day Trial of Red Condor Sign up for a free 30-day trial of Red Condor and you'll receive a free copy of "Email Security Solutions" (Retail Value: $295),... All Security White Papers Security Webcasts Desktop virtualization keys innovation drive View now. Survival Guide: Overcoming the Obstacles to Effective Risk Management This virtual meeting for IT managers and CIOs is based on a new IBM study. Senior Vice Presidents and a Chief Technology Officer... The Evolution of Managed File Transfer Managed file transfer has evolved greatly from its earliest meaning of scheduled FTP to today's meaning of complete file governance, including visibility, enforcement,... How to cut software management costs and avoid over-spending in the future View now! Get a $20 Amazon Gift Card - Just watch a Demo View now! All Security Webcasts IFRAME: http://computerworld.com/s/pages/static/newsletter-signup?taxonomyId=17&taxo nomyId=1 IT Jobs See All Jobs Post a job for $295 ___________________ ______________ (Submit) Go Jobs by SimplyHired Security White Papers | All Security White Papers * A Step By Step Guide For Growing Businesses: Filling In Security Gaps * A Three Stage Approach to Security * Secure Your Email Today: Free 30-Day Trial of Red Condor * Forrester Research: Know your Facts: Understanding The Realities Of Desktop And Application virtualization * Virtualization 2.0: The Desktop Revolution * Bandwidth Bandits * Top Ten Web Threats and How to Eliminate Them * IDC White Paper: The ROI of Backup Redesign Using Deduplication: An EMC Data Domain User Research Study * NETGEAR® In-The-Cloud Distributed Spam Analysis Technology * Comprehensive Internet Security Employing A Layered Defense * A Step By Step Guide For Growing Businesses: Customizing The Security Essentials For Your Business * Protect the Data: Best Practices for Security Policies * Backup and Disaster Recovery eGuide * Windows 7 Migration Made Easier with Desktop Virtualization * Securing Data in the Cloud * Targeted Trojans: The silent danger of a clever malware * Gartner Magic Quadrant for Secure Email Gateway * The Role of the Internet in the Propagation of Malware * How Internet Usage Puts Your Business at Risk * NETGEAR® Stream Scanning Technology [;tagtype=iframe;tile=16;pos=bottomleaderboard;sz=728x90;] Sponsored Links * Choose imageRUNNER ADVANCE for effortless print device management. * Empower your workforce with the Windows Optimized Desktop. Learn about Microsoft solutions. * Increase Network reliability with Diskeeper - Free 30-day download * With Xerox, youll be ready for real business. Find out how> * Pinpoint root cause of network issues up to 90% faster * Fastforward server ROI. * SAP Crystal solutions free trial no download required. * Download the eBook: Netezza TwinFin and Oracle Exadata Compared * Realize all the possibilities of virtualization. * Mobility Management for Dummies. Get Complimentary Copy Now! * FREE SOFTWARE! Disk Performance Analyzer for Networks. Download here. * Save now with the best deals from CDW. Visit CDW.com/bestdeals. * Learn why SAML SSO is Important to Cloud Security * One number. One voicemail. Seize the lead. Sprint Mobile Integration. * All Qualified Security Assessors Are Not Created Equal * Understanding Cloud Services * Thrill the grill! Get all your grilling favorites and SAVE up to 61% plus, get 6 FREE Burgers. Shop now and save. * Tolly Performance Report "Citrix NetScaler with nCore Outperforms F5 BIG-IP" * ITwhitepapers.com - Access thousands of white papers on 300+ technical topics. * Leverage Your Cisco infrastructure for Superior Application Performance * According to 350 CIOS, Cloud Computing & User Self-Service are among the Key Emerging Solution Areas. Learn more now! * Empower your workforce with the Windows Optimized Desktop. Learn about Microsoft solutions. * Interested in straight talk on virtualization as a powerful business solution tool? Click here, learn more. * See how Adobe helps agencies become more open at Adobe.com. * Transform your IT: streamline and automate with HP * Get Control with SonicWALL Application Intelligence * Compare Cisco Unified Communications and Microsoft OCS. Free white paper. * Unleash faster server ROI. Next generation HP ProLiant servers powered by AMD Opteron" 6100 Series processors. * Choose imageRUNNER ADVANCE for effortless print device management. * FREE SOFTWARE! Disk Performance Analyzer for Networks. Download here. * Streamline IT and Boost Performance with WAN Optimization * Balance innovation and execution with Dell OEM. * EMC unified storage is 20% more efficient. Guaranteed. * Protect your work with LGs Super-Multi NAS solutions * On-demand webcast: Maximizing Application Value * Kodak i4000 Series Scanners. Click here to learn more. * Join us in Computerworld's Inner Circle and receive free research reports. * Are you gambling with your data? It is at risk. Find out and protect it. Link to www.trustlto.com * Not All QSAs Are Created Equal: What You Should Know Before You Buy * The arrival of Serial Attached SCSI (SAS) marks a new era in storage scalability Resource Center Ads by TechWords See your link here Skip to top * About Us * Advertise * Contacts * Editorial Calendar * Help Desk * Jobs at IDG * Privacy Policy * Reprints * Site Map The IDG Network: * CIO * Computerworld * CSO * DEMO * GamePro * Games.net * IDC * IDG * IDG Connect * IDG Knowledge Hub * IDG TechNetwork * IDG Ventures * InfoWorld * ITwhitepapers * ITworld * JavaWorld * LinuxWorld * Macworld * Network World * PC World Copyright © 1994 - 2010 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc. Quantcast