Starwood Hotels & Resorts Worldwide, Inc. (NYSE: HOT) said that the point of sale systems of a limited number of its hotels in North America were infected with malware, enabling unauthorized parties to access payment card data of some customers.
Promptly after discovering the issue, Starwood engaged third-party forensic experts to conduct an extensive investigation to determine the facts. Based on the investigation, malware was detected that affected certain restaurants, gift shops and other point of sale systems at the relevant Starwood properties.
The company said there is no indication at this time that the company´s guest reservation or Starwood Preferred Guest membership systems were impacted. The malware was designed to collect certain payment card information, including cardholder name, payment card number, security code and expiration date. There is no evidence that other customer information, such as contact information or PINs, were affected by this issue.
The affected hotels have taken steps to secure customer payment card information and the malware no longer presents a threat to customers using payment cards at Starwood hotels.
Starwood said it encouraged customers to review and monitor their payment card account statements. If a customer believes his or her payment card may have been affected, the customer should immediately contact their bank or card issuer.
Starwood Hotels & Resorts Worldwide, Inc. is a hotel and leisure company.