Omni Hotels & Resorts has announced that 80 percent of their North American hotels had their point-of-sale systems compromised by malware between December 23, 2015 and June 14, 2016. It is believed that payment card information for more than 50,000 Omni customers may have been compromised due to this breach.
Announced: July 8, 2016
Description of the breach: From December 23, 2015 through June 14, 2016, a majority of Omni Hotels & Resorts’ point-of-sale systems were infected with malware. This malicious code was used to collect cardholder names, credit/debit card numbers, security codes, and expiration dates. Omni has stated that they are confident only cards that were physically presented for payment are at risk of being compromised. Their reservation and Select Guest membership systems were not breached.
Omni Hotels & Resorts is encouraging individuals who physically presented their card at the hotel to monitor their accounts and credit reports for fraudulent activity. Customers are being asked to immediately contact their bank or card issuer should they spot any fraudulent activity.
Omni Hotels & Resorts is offering one year of free identity theft protection to all affected guests. The coverage offers identity theft monitoring and a $1 million identity theft insurance package. To take advantage of this offer, Omni Hotels & Resorts requests that customers contact them at 1-855-303-9809.
Data breach period: December 23, 2015 - June 14, 2016
Affected customers: More than Omni 50,000 customers.
Official information from Omni Hotels & Resorts: https://www.omnihotels.com/notice
Contact Omni Hotels & Resorts: 1-855-303-9809 (for free identity theft protection), https://www.omnihotels.com/contact-us
More coverage of this breach: Wall Street Journal