One of the world's biggest hotel chains is investigating a pattern of credit card fraud that leads back to several of its franchises. This data breach could go as far back as November of last year and the information of millions of customers may be at risk.
The Hilton Hotel properties in the United States have begun an official investigation into the incidents, and it isn't looking so promising.
In addition to the flagship Hilton Hotels, the subsidiaries Embassy Suites, Doubletree, Hampton Inn and Suites, and the upscale Waldorf Astoria Hotels & Resorts are also thought to be affected by this breach.
Visa was the one who initially discovered the issue when several fraud cases were filed and the common link was point-of-sale registers in gift shops and restaurants at Hilton-owned properties. Although nothing is official yet, several financial institutes told KrebsOnSecurity that the breach may date as far back as November 2014, and still might be at risk.
Hilton has released this statement to ease our minds, but it not the solid answer we were looking for.
"Hilton Worldwide is strongly committed to protecting our customers’ credit card information. We have many systems in place and work with some of the top experts in the field to address data security. Unfortunately the possibility of fraudulent credit card activity is all too common for every company in today’s marketplace. We take any potential issue very seriously, and we are looking into this matter."
We'll let you know as soon as we hear anything official from Hilton itself or other security teams. But until then, make sure you're tuned into what's Happening Now for news about this story and every other breach, hack and bug in the tech world.