Another POS hack in the hospitality industry. From their press release:
Officials of The Westin Bonaventure Hotel & Suites which is independently owned by Today’s IV, Inc. and operated by Interstate Hotels & Resorts, Inc. under a license issued by Westin Hotel Management, L.P. announced that the hotel’s four restaurants—Lake View Bistro, Lobby Court Bar, Bonavista Lounge, L.A. Prime—and its valet parking operations may have suffered a data security breach between April 2009 and December 2009. Only guests using credit cards at these establishments were potentially affected by the possible data security breach. The system that stored hotel guest’s credit card information was not affected.
Upon learning of the possible data security breach, hotel officials immediately contacted appropriate law enforcement officials. The hotel continues to cooperate with investigators and the credit card companies to identify the responsible hackers and to assist affected customers. Moreover, the hotel continues to carefully monitor and evaluate its computer systems to ensure that customer information is adequately protected.
The unlawfully accessed data may have included names printed on customers’ credit or debit cards, credit or debit card numbers, and card expiration dates. Guests who used or visited the affected businesses during the eight month-period and who used a credit or debit card to pay their bills directly to the restaurants and valet parking might have had such information compromised and are encouraged to review their statements from that time period.
For additional information about other possible actions consumers may take in response to compromised credit card security, please click here (http://www.thebonaventure.com/creditupdate/documents/DataSecurityNotification.pdf).
Note that the open letter to guests states:
At some point during the period April 2009 through December 2009, our point-of-sale system for these outlets may have been illegally accessed by an outside hacker.