Hackers reportedly infiltrated the computer systems used by multiple Trump properties in a several-month time span recently, exposing patrons' credit card information. The Trump Hotels' notice echoed Sabre's notice of data breach about the unauthorized access of Sabre Hospitality Solutions SynXis Central Reservation System.
According to the notice, an investigation into the incident discovered that an unauthorized party first gained access to payment card data and other information, including the names, emails, addresses and phone numbers of guests, between August 10, 2016 and March 9, 2017.
While Rosewood is working with Sabre to notify affected customers, it also advises people who made bookings between November last year and March this year to regularly review their account statements. Included in the breach is cardholder name, payment card number, card expiration date and the card security code. In some cases, other information was stolen, like email, phone number and address, according to the Trump Hotels' press release.
"The Sabre SynXis Central Reservations system (CRS) facilitates the booking of hotel reservations made by consumers through hotels, online travel agencies, and similar booking services".
"The privacy and protection of our guests' information is a matter we take very seriously", the notice said.
According to a company statement, "It did not affect Trump Hotels' systems". This was the third involving the hotel chain since May 2015. Sabre Corp. only informed the chain of the hack June 5. "This incident occurred on the systems of Sabre Hospitality Solutions (Sabre), a service provider used by Trump Hotels".
Earlier this year, the InterContinental Hotel Group said guests' credit card data had been compromised at more than 1,200 of its properties, including Holiday Inn and Crowne Plaza hotels, over a three month period.
Sabre has also notified law enforcement and payment card brands about the incident as a cybersecurity firm investigates. The hotel confirmed that they were not hacked themselves. Per an investigation into "an incident, ' Sabre discovered that a hacker had gained access to 'account credentials" which made it possible for this person/group to access some reservation data as well as payment card data. That mistake resulted in Trump Hotels paying $50,000 in penalties in September 2016 as it resulted in the payment card information for more than 70,000 guests being exposed.