Email the editor

Three UK Hyatt hotels hit by malware attack

Hyatt Regency Birmingham, Andaz London Liverpool Street and Hyatt Regency London identified by hotel company

Pictured: Hyatt Regency Birmingham, one of three UK hotels thought to have been affected by malware

Hyatt Hotels has confirmed that customer data was potentially put at risk at three of its properties in the UK, in last year’s malware attack.

An investigation by the hotel giant has discovered several of its properties had been affected by the malware, which was uncovered last month. It revealed signs of unauthorised access to payment card data from cards used onsite between 13 August 13, 2015 and 8 December 8. 

In the UK, the Hyatt Regency Birmingham, Andaz London Liverpool Street and Hyatt Regency London - The Churchill have been identified as at risk between those dates. 

Hyatt says the malware was designed to collect payment data – card holder name, card number, expiry date and verification code – from cards as they were passed through  affected payment processing systems. There is no indication that other customer information was affected, and the company has since stepped up its cyber security.

“Protecting customer information is critically important to Hyatt, and we take the security of customer data very seriously,” said Chuck Floyd, global president of operations for Hyatt. “We have been working tirelessly to complete our investigation, and we now have more complete information that we want to share so that customers can take steps to protect themselves. Additionally, we want to assure customers that we took steps to strengthen the security of our systems in order to help prevent this from happening in the future.”

Hyatt has encouraged customers to review payment card account statements closely and report any unauthorised charges to their card issuer immediately. 

Facebook Share Twitter Share LinkeIn Share