IHG Reveals Second Credit Card Data Breach Occurred in 2016

Credit: skift.com

Mark Lennihan  / Associated Press

InterContinental Hotels Group, parent of brands including Holiday Inn Express and Candlewood Suites, said some of its franchised properties in the U.S. and Puerto Rico suffered a recent credit card data breach. Mark Lennihan / Associated Press



Skift Take: This is yet another reminder for the hotel industry about the crucial importance of cyber security.

— Deanna Ting

Last week, InterContinental Hotels Group (IHG) announced it had suffered a data breach at multiple IHG-branded franchise hotel locations in the U.S. and Puerto Rico during the period of September 29, 2016 to December 29, 2016.


IHG did not disclose the exact number of properties impacted. To learn which properties were impacted, guests need to search for hotels that may have been impacted on IHG’s website.


It’s the second such data breach the company has revealed this year. The earlier breach, announced in February, impacted 12 hotels in the U.S. The company operates and manages hotel brands that include Holiday Inn, Holiday Inn Express, Candlewood Suites, Hotel Indigo, and InterContinental Hotels.


IHG said a cybersecurity investigation revealed that malware accessed payment card data from cards used on site at some of its franchisee-operated properties in the Americas, thereby generating unauthorized charges on those cards after being used at IHG front desks.


The company added that while there’s no evidence that unauthorized access to payment card data took place after December 29, confirmation that the malware was removed didn’t take place until the properties were investigated in February and March of this year.


IHG also noted that before this breach, many of IHG’s franchise-operated hotels had installed IHG’s Secure Payment Solution, a point-to-point encryption payment acceptance solution, and that those properties that had this technology prior to September 29 or shortly thereafter were not impacted by this most recent breach. Properties that had implemented SPS before September 29, 2016 were not affected.


IHG said that it also doesn’t believe any other guest information, other than cardholder names and numbers, was taken by the hack.


IHG isn’t the only hotel company to suffer from recent breaches of customer credit card data. Other hotel brands that have dealt with this recently include Trump Hotels, Hard Rock Hotels, Omni Hotels & Resorts, and Hilton Hotels.


Top Stories

farawayyachtingcharters - Easy Branches
botoxfillerveintheraphyinphuket - Easy Branches

Latest in Travel

American Airlines’ Response To Its Social Media Moment Came After Learning From United

All the facts aren't known yet about the incident on board the American Airlines flight before it departed San Francisco but there are many lessons to be learned already. At the least, American Airlines' mea culpa came quickly as the carrier obviously learned from United's missteps. -Dennis Schaal
  • 9 hours ago

Kayak CEO on Giving Consumers a Choice and 10 Other Digital Trends This Week

These are the digital trends we were talking about this week. -Sarah Enelow
  • 12 hours ago

Air Berlin Sees On-Time Performance Suffer in Transformation Toll

This decline in service is due to wrenching changes. Major shareholder Etihad has pushed Air Berlin to trim its fleet size, to focus on longer haul routes, and to carve out its leisure routes into a unit that may be sold to TUI. -Sean O'Neill
  • 14 hours ago

The Effects of Trump’s First 100 Days and 9 Other Tourism Trends This Week

These are the tourism trends we were talking about this week. -Sarah Enelow
  • 15 hours ago

BP Gulf Oil Spill Damage Valued at $17.2 Billion as Tourism Still Struggles

The BP oil spill scared tourists away from the Gulf Coast for years and effects still linger. These states, especially Mississippi and Alabama, can't afford to have their cruise terminals, beaches, wildlife, and seafood poisoned. -Sarah Enelow
  • 16 hours ago

United President on Potential Boycott and 6 Other Aviation Trends This Week

These are the aviation trends we were talking about this week. -Sarah Enelow
  • 17 hours ago

This Tiny Resort Island Doesn’t Want Uber or Lyft

If Austin tourism can still thrive despite the loss of Uber and Lyft, perhaps Block Island's resistance to ridesharing apps isn't a bad thing, either. -Deanna Ting
  • 18 hours ago

Cranky on the Web: More United, Of Course

Story On United 3411 and Dr David Dao – Fox 11 News Somehow I missed this last week, but the ... Read More
  • 20 hours ago

United CEO Oscar Munoz Will Not Automatically Become Board Chair in 2018

It's easy to blame this on the incident last week in Chicago. And perhaps the two things are related. But it's not a big surprise Munoz will not become board chair next year. He had a heart transplant last year, and he has been reducing his role over time. -Brian Sumers
  • 1 day ago

TSA Video Seeks to Reassure Transgender Travelers

Sadly, it seems the TSA is still far away from recognizing that its policy requiring travelers to assume a gender when passing through security causes distress to many members of the LGBTQ community. -Andrew Sheivachman
  • 2 days ago

Amtrak CEO Says New York Rail Troubles Will Worsen Without More Funding

Travelers to New York depend on trains -- safety issues and chronic delays must be addressed before tackling the aesthetic horror that is Penn Station. Hopefully Trump's $1 trillion infrastructure plan will come through and finally make New York's rail system world-class. -Sarah Enelow
  • 2 days ago

Norwegian Air to Debut London to Singapore Route With Discounted Airfares

The budget airline's expansion to Asia will be operated by Norwegian UK, a Gatwick-based subsidiary. Insiders hint that the low-cost carrier will use this subsidiary to open other routes in Asia, Africa, and South America. -Sean O'Neill
  • 2 days ago