Hard Rock Hotel & Casino Las Vegas said a malware attack may have allowed hackers to steal credit card information used at its retail and service locations.
The attack, discovered on April 3, was limited to credit or debit card transactions between Sept. 3, 2014 and April 2, 2015, at the company's restaurant, bar and retail locations, including the Culinary Dropout Restaurant.
Transactions at the hotel, casino, Nobu, Affliction, John Varvatos, Rocks, Hart & Huntington Tattoo or Reliquary Spa & Salon were not affected, it said.
The potential breach may have included names, credit card numbers and their CVV security codes but not PIN numbers or other sensitive customer information, the company said in a statement.
This month there was reported a breach within the Trump Hotel Collection.
It started with reports from U.S. banks that discovered a pattern of fraudulent debit and credit card transactions that had one common denominator: the cards were used at Trump luxury hotel properties around the country.
“Like virtually every other company these days, we have been alerted to potential suspicious credit card activity and are in the midst of a thorough investigation to determine whether it involves any of our properties,” said Eric Trump, executive vice president of development and acquisitions at Trump Organization. “We are committed to safeguarding all guests’ personal information and will continue to do so vigilantly.”
In addition, information from thousands of credit and debit cards may have been stolen during a data security breach at FireKeepers Casino in Battle Creek.
Officials with FireKeepers Casino confirmed Friday that approximately 85,000 credit and debit cards used between September 7, 2014, and April 25, 2015, for food, beverage and retail purchases may have been affected by the breach. According to a release from the casino, the breach was contained and cards have been processed securely since April 26.
As an added precaution, FireKeepers is offering free credit monitoring and identity protection services and also encourages people to monitor their credit and debit card accounts, and contact their bank if they notice any suspicious activity.
During the investigation, FireKeepers discovered there may have also been unauthorized access to a file storage server which contained the personal information of certain customers, employees and their dependents. The data included Social Security numbers and/or driver’s license numbers and medical billing information. However, investigators have not found any evidence of misuse of the personal information, according to FireKeepers.
Information on protecting your casino data by AACasino
Better education on Payments and Fraud for customers