Three Hyatt hotels in Hong Kong hit by malware designed to steal credit card data
Chain says hundreds of locations affected worldwide, including 22 in mainland China, one in Macau, and one in Taipei
Thieves hacked into computers at high-end Hong Kong hotels, harvesting customers’ credit card details for almost four months, it has been revealed.
Three hotels operated by Hyatt in Hong Kong and 22 on the mainland were affected by malware designed to steal customers’ card data, the hotel chain said.
Hyatt Hotels said its investigation identified signs of unauthorised access to payment card data from cards used at certain Hyatt-managed locations, primarily restaurants, between August 13, 2015 and December 8, 2015.
A small number of those cards were used at spas, golf shops, parking, and a limited number of front desks, or provided to a sales office, it said.
Hyatt Regency Hong Kong in Sha Tin, Grand Hyatt Hong Kong and Kowloon Hyatt Regency in Tsim Sha Tsui were among 200 affected hotels worldwide. The chain operates 627 hotels, resorts and properties in 52 countries.
The malware also affected one hotel in Macau.
The company could not provide figures on how many guests had been affected in the three local hotels, but a spokesman said the chain was working with local authorities to look into the cases.
