Saturday, May 24, 2025
HomeData BreachHyatt Hotels Data Breach Exposed 41 Hotel Customers Payment Card Information

Hyatt Hotels Data Breach Exposed 41 Hotel Customers Payment Card Information

Published on

SIEM as a Service

Follow Us on Google News

One of the Largest global hospitality company “Hyatt Corp” Suffering from Data Breach in their Customers Payment Card Systems in 41 Hotels around the World between March 18, 2017, and July 2, 2017.

An Unauthorized Activity Discovered in its Payment card systems and access the Credit cards information from cards manually entered or swiped at the front desk of certain Hyatt managed locations.

Late 2015 Hyatt Suffered a First Data Breach that allowed hackers to gained access to credit card systems at 250 properties in 50 different countries. This is second Data Breach that faced by Hyatt with its 11 Country Braches at 41 Hotels.

- Advertisement - Google News

Also Read:   Accenture Data Leak Exposed 137 Gigabytes of Highly Sensitive Data Online Including Master key

This Payment card breach Occurred in Respective Hyatt Locations Around the World Including Brazil, China, Colombia, India, Guam, Indonesia, Japan, Malaysia, Mexico, Puerto Rico, Saudi Arabia, South Korea, United States.

Futher Investigation Revealed that This Unauthorized  access to card data was caused by an insertion of malicious software code from a third party onto certain hotel IT systems.

Hyatt Spoke Person said this data breach affected payment card information such as cardholder name, card number, expiration date and internal verification code which is used by Customers from cards manually entered or swiped at the front desk of certain Hyatt-managed locations.

According to Hyatt, “Upon discovery, we launched a comprehensive investigation to understand what happened and how this occurred, which included engaging leading third-party experts, payment card networks and authorities”
While we estimate that the incident affected a small percentage of payment cards used by guests who visited the group of affected Hyatt hotels during the at-risk time period, the available information and data does not allow Hyatt to identify each specific payment card that may have been affected.

The largest number of Hyatt properties impact in China (18 Properties) by this Payment card Data Breach.

The primary step customers can take is to review their payment card account statements closely and report any unauthorized charges to their card issuer immediately. Hyatt Said.

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Zero-Trust Policy Bypass Enables Exploitation of Vulnerabilities and Manipulation of NHI Secrets

A new project has exposed a critical attack vector that exploits protocol vulnerabilities to...

Threat Actor Sells Burger King Backup System RCE Vulnerability for $4,000

A threat actor known as #LongNight has reportedly put up for sale remote code...

Chinese Nexus Hackers Exploit Ivanti Endpoint Manager Mobile Vulnerability

Ivanti disclosed two critical vulnerabilities, identified as CVE-2025-4427 and CVE-2025-4428, affecting Ivanti Endpoint Manager...

Hackers Target macOS Users with Fake Ledger Apps to Deploy Malware

Hackers are increasingly targeting macOS users with malicious clones of Ledger Live, the popular...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Hackers Expose 184 Million User Passwords via Open Directory

A major cybersecurity incident has come to light after researcher Jeremiah Fowler discovered a...

Inside LockBit: Data Leak Reveals Leading Affiliates and How They Operate

A massive data leak from the LockBit ransomware group, published on its hijacked leak...

ViciousTrap Hackers Breaches 5,500+ Edge Devices from 50+ Brands, Turns Them into Honeypots

A sophisticated cyber threat actor, dubbed ViciousTrap by Sekoia.io's Threat Detection & Research (TDR)...