An unknown group of hackers breached Trump hotels by installing a piece of malware on the company’s internal network, potentially stealing customer credit card information for nearly a year.
The Trump Hotel Collection published a legal notice Wednesday, acknowledging that malware may have breached their systems and accessed their point-of-sale terminals.
According to investigators, the hackers managed to plant themselves within the corporate network for nearly 12 months time. The hotel chain warned anyone who visited Trump hotel locations between May 19, 2014 through June 2, 2015 “may have been affected.”
The list of Trump hotels hacked in the potential breach include Trump SoHo New York, Trump National Doral, Trump International New York, Trump International Chicago, Trump International Waikiki, Trump International Hotel & Tower Las Vegas, and Trump International Toronto.
According to Trump hotels, hackers managed to breach the internal network and infect the hotel chains point-of-sale payment terminals, swiping credit card data as it was being entered into the system. The malware swiped sensitive information including cardholders name, payment card numbers, expiration dates and bank security codes (CVV) on the back of cards.
According to the Trump hotel collection, the malware stole payment card information as it was entered into the computer, unlike some point-of-sale malware that steals the magnetic strip data on the back of the card. However, the collection is unsure as to how much information was actually accessed by hackers.
“While the independent forensic investigator did not find evidence that information was taken from the Hotel’s systems, it appears that there may have been unauthorized malware access to payment card information as it was inputted into the payment card systems,” Trump Hotel Collection said in their security notice published Wednesday.
The company is offering one free year of identity theft protection and fraud resolution services to all customers affected in the Trump hotels hack.
The Trump Hotel Collection can add themselves to the long list of corporate companies who have been recently hacked. Just in the last few years hackers have managed to breach major corporations including Target, Home Depot, Michaels, P.F. Changs, Staples, Albertsons among countless others.
Trump hotels said they have notified the Federal Bureau of Investigation (FBI) and financial institutions with affected customers when they discovered their was a breach within the company’s internal network. The company also said they hired a third-party security team to perform a forensic investigation on the affected servers.
As Trump hotels is currently under investigation details are scarce, however we will keep you updated as information comes out.