Payment card data exposed at hotel group


In February 2017, the hotel group announced a data breach affecting 12 of its properties. Malware was found on servers which processed payments made at on-site restaurants and bars. Stolen data included cardholder names, card numbers, expiration dates, and internal verification codes.

The malware had infected hotel servers, but was eradicated in all locations by the end of March 2017.

In April 2017, the group revised this figure from 12 to 1,200! (Due to the fact that those initially named were the only ones the group run directly).

Free consultation

Want to discuss this case? We're offering a FREE 20 minute phone consultation with our analysts to discuss this case and the implications it has for your organisation. Just select the time and date that works for you:


  • InterContinental Hotels & Resort

We've done the analysis so you can make the decisions

When purchasing a minimum of 5 Case Studies
$699.99 if buying less than 5.

  • Detailed cause & effect analysis
  • Lessons learnt catalogued
  • Preventive controls extracted
Add to Cart
Heads up! Want to try before you buy? You can download our FREE demo case study here