Hyatt Hack: Major Data Breach

Hyatt Breach Affects 41 Hotels Worldwide

We would like to warn hotel guests of another credit card breach at Hyatt Group, the second since December 2015. On Thursday last week, 41 of its hotels spread across 13 countries confirmed unauthorized access to payment card information.

China had the worst breach with 18 hotels impacted, with three in North America. India, Japan and Saudi Arabia were also exposed.Chuck Floyd, global president of operations for Hyatt Hotels Corporation, in an open letter to customers posted to its website “Based on our investigation, we understand that such unauthorized access to card data was caused by an insertion of malicious software code from a third party onto certain hotel IT systems.”

Hyatt suffered a similar breach affecting 250 hotels located in 50 countries back in 2015. In a prepared statement at the time Hyatt stated, “Hyatt has taken steps to strengthen the security of its systems, and customers can feel confident using payment cards at Hyatt hotels worldwide.”Robert Brown, Director of Services for Verismic said, “It’s possible the steps taken by the Hyatt group back in December 2015 are still being deployed throughout the organization, especially if those systems are dispersed around the globe and not connected by a common network. When choosing your systems management toolset, you need to implement the solution which is secured using 2048bit certificates and two factor authentication but also works regardless of where the endpoints are located.

This is something built into the DNA of Syxsense, to operate securely as long as there is an internet connection. Using Syxsense, these endpoints could have been protected within a couple of weeks.”

Start Patching

Start a free, 14-day trial of Syxsense, which helps organizations from 50 to 10,000 endpoints monitor and manage their environment, all from just a web browser. An email will be automatically sent to the address you provide.