The malware was discovered on a payment processing system used to manage the accounts of guests staying throughout the Hyatt group’s directly managed establishments. In all, accounts at 318 hotels are potentially affected. In an official announcement, the group indicates it “recently identified malware on computers that operate the payment processing systems for Hyatt-managed locations.”
The discovery of malware is an embarrassment to the international hotel chain. The Hyatt group was formed in 1957, after the purchase of Hyatt House, at Los Angeles International Airport. The group, through various brands, owns 627 properties worldwide. Of these, 318 are directly run (and thus affected by the malware), with the others being franchises (and these are unaffected.)
Speaking with the BBC, Chuck Floyd, who is the global president of operations, indicated the problem had been rapidly fixed. However, he added that a global warning had gone out to all customers over the affected period advising them to monitor their bank accounts for any unusual or suspicious activities. Floyd added: “We have taken steps to strengthen the security of our systems, and customers can feel confident using payment cards at Hyatt hotels worldwide.”
The hotel group would not be drawn into any discussion about whether any customers had been directly affected.
To assist customers, the group has set up a special webpage to provide support and advice.
According to TechCruch, other hotel groups have also been fit recently by malicious software, including Hilton, Starwood and Mandarin Oriental chains.