The Chicago-based Hyatt Hotels Corporation identified signs of unauthorized access to payment card information used at some 41 hotels in 11 countries from March 18, 2017 to July 2, 2017.
Five of the Hyatt properties affected by the breach included U.S. locations, three resorts in Hawaii and one each in Guam and Puerto Rico. The nation with the largest number of affected Hyatt properties was China with 18.
It is the second major incident with the hospitality chain in the last two years. Hyatt identified signs of data theft from payment cards used at some 250 Hyatt-managed locations, primarily restaurants, in 50 countries from August through December 2015.
Recommended For You
The hotel chain said the latest incident affected payment card information – cardholder name, card number, expiration date and internal verification code – from cards manually entered or swiped at the front desk of certain Hyatt-managed locations. It added there is no indication that any other information was involved.
"Upon discovery, we launched a comprehensive investigation to understand what happened and how this occurred, which included engaging leading third-party experts, payment card networks and authorities," the company said in a statement. "Hyatt's layers of defense and other cybersecurity measures helped to identify and resolve the issue. This incident affects a small percentage of total payment cards used at the affected hotels during the at-risk dates."
© 2025 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
