NEW YORK — Hyatt, Sheraton, Marriott and Westin hotels in 10 states and the District of Columbia may have been targeted by hackers for months.
According to the hotel operator HEI Hotels & Resorts, malware put into place in at least 20 locations may have collected names, card account numbers, card expiration dates and verification codes.
Data from customers may have been collected from early December, through late June. At some properties, HEI said, data collection may have begun as early as March 2015 at hotel locations where people bought food or drinks.
Here’s a look at the specific hotels and locations that may have been compromised:
Hyatt Centric Santa Barbara
Renaissance San Diego Downtown Hotel
San Diego Marriott La Jolla
The Westin Pasadena
The Westin Snowmass Resort in Snowmass Village
Boca Raton Marriott at Boca Center.
Intercontinental Tampa Bay.
Royal Palm South Beach Miami
Westin Fort Lauderdale
Hotel Chicago Downtown
The Hotel Minneapolis Autograph Collection
The Westin Minneapolis
The Westin Philadelphia
Dallas Fort Worth Marriott Hotel & Golf Club.
Equinox Resort Golf Resort & Spa in Manchester Village
Le Meridien Arlington
Sheraton Pentagon City, Arlington
DISTRICT OF COLUMBIA
The Westin Washington, D.C. City Center