Hilton Worldwide has issued a statement that it has “identified and taken action to eradicate unauthorized malware that targeted payment card information in some point-of-sale systems.”
The information exposed included cardholder names, payment card numbers, security codes and expiration dates from November 18 to December 5, 2014 or April 21 to July 27, 2015.
Interestingly, Hilton did not indicate how many cardholders were affected and are not offering any type of mitigation, even though security codes of the payment cards were exposed.
Hilton suggests that customers “review and monitor their payment card statements” if they used a credit card at any Hilton property during that time frame. I for one, always closely monitor my credit card statements. Unfortunately in this case, it does not appear that new cards will be issued to cardholders, even though security codes were compromised.