Hotel manager White Lodging breached again

By Chad Hemenway on April 9, 2015

white-lodgingHotel management firm White Lodging Services Corp. has announced another breach of point-of-sale systems–this time over eight months at 10 locations.

The Merrillville, Ind.-based company said food and beverage outlets, such as restaurants and lounges, are suspected to have been affected by the breach from July 3, 2014 through February this year. Information accessed includes names on payment cards, payment card numbers, security codes and card expirations dates.

White Lodgings said it has contacted authorities another company to review forensics. It is also working with credit card companies.

At the start of 2014, White Mountains said 14 hackers accessed POS terminals in restaurants and lounges at 14 locations from March 20 to December 16, 2013.

A year ago, seven of the impacted locations were Marriott hotels in Chicago, Denver, Boulder, Colo., Austin, Indianapolis, Richmond, Va., and Louisville. The list of hotels included in the latest breach include:

  • Indianapolis Marriott Downtown, Indianapolis, IN
  • Chicago Marriott Midway Airport, Chicago, IL
  • Auburn Hills Marriott Pontiac at Centerpoint, Pontiac, MI
  • Austin Marriott South Airport, Austin, TX
  • Boulder Marriott, Boulder, CO
  • Denver Marriott South at Park Meadows, Denver, CO
  • Louisville Marriott Downtown, Louisville, KY
  • Renaissance Boulder Flatiron, Broomfield, CO
  • Courtyard Austin Downtown, Austin, TX
  • Sheraton Hotel Erie Bayfront, Erie, PA

“After suffering a malware incident in 2014, we took various actions to prevent a recurrence, including engaging a third-party security firm to provide security technology and managed services,” said Dave Sibley, White Lodging president and CEO, Hospitality Management. “These security measures were unable to stop the current malware occurrence on point-of-sale systems at food and beverage outlets in 10 hotels that we manage. We continue to remain committed to investing in the measures necessary to protect the personal information entrusted to us by our valuable guests. We deeply regret and apologize for this situation.”

Chad Hemenway

Chad Hemenway is Managing Editor of Advisen News. He has more than 15 years of journalist experience at a variety of online, daily, and weekly publications. He has covered P&C insurance news since 2007, and he has experience writing about all P&C lines as well as regulation and litigation. Chad won a Jesse H. Neal Award for Best Single Article in 2014 for his coverage of the insurance implications of traumatic brain injuries and Best News Coverage in 2013 for coverage of Superstorm Sandy. Contact Chad at 212.897.4824 or [email protected].