Hilton becomes latest retailer to experience a data breach

Blog Post
Hilton Worldwide has announced that it may have experienced a data breach between April 21 and July 27 of this year. Several financial companies, however, have stated that this breach may have originated as far back as November 2014 – and may be ongoing. Hilton became aware of the breach when Visa notified numerous financial institutions of a breach and, based on that information, five banks determined that the common point-of-purchase was at a Hilton property, including Hilton flagship locations, Embassy Suites, Doubletree, Hampton Inn and Suites, and Waldorf Astoria Hotels and Resorts. A review of the location of the compromised cards also revealed that credit card information was obtained only from inside franchised restaurants, coffee bars, and gift shops on Hilton properties. The breach does not appear to include point-of-sale terminals used for guest reservation and payment for hotel stays.

Hilton has issued the following statement in connection with the incident:

“Hilton Worldwide is strongly committed to protecting our customers’ credit card information. We have many systems in place and work with some of the top experts in the field to address data security. Unfortunately the possibility of fraudulent credit card activity is all too common for every company in today’s marketplace. We take any potential issue very seriously, and we are looking into this matter.”

Hilton has not yet provided the number of those affected by the breach or its root cause. At this point, however, any cardholders who have used a credit or debit card at a Hilton property within the past 12 months should cancel their cards and closely and continuously monitor their card transactions.

McDonald Hopkins will provide more information on this breach as it becomes available. If you have questions, you can always contact one of the attorneys on our data privacy and cybersecurity team
Jump to Page

McDonald Hopkins uses cookies on our website to enhance user experience and analyze website traffic. Third parties may also use cookies in connection with our website for social media, advertising and analytics and other purposes. By continuing to browse our website, you agree to our use of cookies as detailed in our updated Privacy Policy and our Terms of Use.