Hackers hit IHG hotels in Milford and CT

Hotel Intercontinental

REUTERS Leonhard Foeger File

In February, the hotel chain parent company, which includes brands such as Crowne Plaza, Holiday Inn, Candlewood Suites and Kimpton Hotels and Resorts, among others, admitted to a data breach first discovered in late December a year ago.

There were 10 CT locations affected by the breach - the Holiday Inn locations in East Hartford, New London, and Norwich, and the Holiday Inn Express locations in Branford, Meriden, Milford, Mystic, Newington, Southington, and Vernon.

The brands affected were Holiday Inn, Holiday Inn Express, Hotel Indigo, Crowne Plaza, Candlewood Suites and Daybridge Suites, Hirsch said.

Intercontinental Hotels Group is warning customers that malware infected point-of-sale devices at 1,200 of its locations beginning in September 2016.

IHG hasn't revealed the exact number of hotels that were affected by the breach.

On Friday, IHG confirmed the malware was more widespread, affecting hundreds of properties.

Rather than affecting only 12 properties and their bars and restaurants, IHG said in a statement that the malware was "designed to access payment card data from cards used onsite at front desks" at properties between September 29, 2016, and December 29, 2016.

But IHG says that those dozen locations referred only to hotels that it directly runs, and that it didn't yet know the scope of the breach at its franchisees' locations. That data can include things like cardholder name, card number, expiration date and internal verification code.

InterContinental says that the investigation at all locations isn't yet complete, and to keep checking back.

Cybersecurity analyst and reporter Brian Krebs, who first broke news about the breach in December, notes that more IHG hotels may be implicated.

"Best American Hospitality Corp. has been working with Kroll Cyber Security, LLC to review its security measures, confirm that this issue has been remediated, and evaluate ways to enhance Best American Hospitality Corp.'s security measures", the company added. IHG has been implementing Secure Payment Solution (SPS) to protect customers' payment card information moving forward.

The breach, which security journalist Brian Krebs reported was being investigated in December, occurred between September and December previous year.

IHG has been offering its franchised properties a free examination by an outside computer forensic team hired to look for signs of the same malware infestation known to have hit other properties.

In its statement, IHG says that the malware infected systems at front desks, and that related infections persisted from September 29, 2016, until December 29, 2016.

Latest News