Newsroom
November 25, 2015
Hilton admits data breach
Hilton Worldwide last week said it has identified and taken action to rid its systems of malware that allowed unauthorized users access to customers' payment card data over a 17-week period from Nov. 18 to Dec. 5, 2014, or April 21 to July 27, 2015.
The breach, initially reported in September by KrebsOnSecurity, exposed customers' names, payment card numbers, security codes and expiration dates. Hilton said addresses and PIN numbers were not a part of the breach.
Hilton has not said how many locations or hotel brands were impacted. Hilton's announcement came just a few days after Starwood Hotels & Resorts announced that more than 50 of its hotels in the U.S. were affected by a data breach.
NAFCU continues to push for a strong national data security standard for retailers and is urging Congress to act on H.R. 2205/S. 961, the "Data Security Act," this year.
The breach, initially reported in September by KrebsOnSecurity, exposed customers' names, payment card numbers, security codes and expiration dates. Hilton said addresses and PIN numbers were not a part of the breach.
Hilton has not said how many locations or hotel brands were impacted. Hilton's announcement came just a few days after Starwood Hotels & Resorts announced that more than 50 of its hotels in the U.S. were affected by a data breach.
NAFCU continues to push for a strong national data security standard for retailers and is urging Congress to act on H.R. 2205/S. 961, the "Data Security Act," this year.
Share This
Related Resources
Data Privacy Issue Brief
Whitepapers
Data Privacy Issue Brief
Whitepapers
NAFCU Data Privacy Principles
Whitepapers
Compliance Monitor - August 2018
Newsletter
Get daily updates.
Subscribe to NAFCU today.