DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Kalahari Resorts in Wisconsin and Ohio hit by payment card breach

Posted on December 3, 2015 by Dissent

From their notice of December 1 (and no, this isn’t related to the Starwood properties’ breach disclosed recently):

Kalahari Resorts recently became aware of a possible security incident involving credit and debit card data reportedly used at our food & beverage, retail and spa outlets at our Wisconsin (1305 Kalahari Dr., Wisconsin Dells, WI 53965) and Ohio (7000 Kalahari Dr., Sandusky, OH 44870) sites. An investigation into this incident was immediately initiated. Our team, including third-party forensics experts, has been working continuously to understand the nature and scope of the incident. This investigation is ongoing. The incident has been contained and our customers can safely use payment cards at all Kalahari Resorts locations.

We believe that the intruder installed malicious software designed to capture data from certain credit and debit cards that were used at our resort outlets (such as restaurants, bars, retail and spa) between May 18, 2015 and November 9, 2015. The incident did not impact our hotel reservation or front desk systems, nor did it impact any transactions at our Pennsylvania resort. The incident could affect credit and debit card data, including card number, cardholder name, card’s expiration, and card verification code. However, we have not determined that any specific individual’s credit or debit card data was affected by this incident.

We take the privacy of personal information very seriously and deeply regret any inconvenience that this may cause our valued guests. We have been in contact with the U.S. Secret Service and will continue to fully cooperate with their investigation.

[…]

Click Here for Frequently Asked Questions

Kalahari did not disclose the number of affected consumers. They report learning of the problem in late October when they were “alerted” to the problem, but they do not indicate who alerted them and whether it was someone whose payment card information had been misused.

Related posts:

  • Atlantis, Paradise Island Provides Notice of Data Security Incident
Category: Business SectorID TheftMalwareU.S.

Post navigation

← Computer company sues gaming establishment and its employees over alleged software theft
Anonymous claims to leak Paris climate officials’ data (UPDATED) →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Mississippi Law Firm Sues Cyber Insurer Over Coverage for Scam
  • Ukrainian Hackers Wipe 47TB of Data from Top Russian Military Drone Supplier
  • Computer Whiz Gets Suspended Sentence over 2019 Revenue Agency Data Breach
  • Ministry of Defence data breach timeline
  • Hackers Can Remotely Trigger the Brakes on American Trains and the Problem Has Been Ignored for Years
  • Ransomware in Italy, strike at the Diskstation gang: hacker group leader arrested in Milan
  • A year after cyber attack, Columbus could invest $23M in cybersecurity upgrades
  • Gravity Forms Breach Hits 1M WordPress Sites
  • Stormous claims to have protected health info on 600,000 patients of North Country Healthcare. The patient data appears fake. (2)
  • Back from the Brink: District Court Clears Air Regarding Individualized Damages Assessment in Data Breach Cases

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • The EU’s Plan To Ban Private Messaging Could Have a Global Impact (Plus: What To Do About It)
  • A Balancing Act: Privacy Issues And Responding to A Federal Subpoena Investigating Transgender Care
  • Here’s What a Reproductive Police State Looks Like
  • Meta investors, Zuckerberg to square off at $8 billion trial over alleged privacy violations
  • Australian law is now clearer about clinicians’ discretion to tell our patients’ relatives about their genetic risk
  • The ICO’s AI and biometrics strategy
  • Trump Border Czar Boasts ICE Can ‘Briefly Detain’ People Based On ‘Physical Appearance’

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.
Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report