Hard Rock Hotels & Casinos announced last week an unauthorized party had gained access to customer data, including information related to payment cards and reservations.
The group was notified June 6 about a security incident through third-party hotel reservation system The Sabre Hospitality Solutions SynXis, according to Threatpost.
An investigation revealed the unauthorized access to payment card and other reservation information happened Aug. 10, 2016. The last access to payment card information occurred March 9, 2017.
Sabre said in a press release compromised information include cardholder name; payment card number; card expiration date; and for a subset of reservations, payment card security code. Additionally, information such as guest name, email, phone number and address were accessed in certain cases.
There is no evidence of continued unauthorized activity, Sabre said.
The Hard Rock Hotel & Casino properties affected include Hard Rock Hotel & Casino Biloxi, Hard Rock Hotel Cancun, Hard Rock Hotel Chicago, Hard Rock Hotel Goa, Hard Rock Hotel & Casino Las Vegas, Hard Rock Hotel Palm Springs, Hard Rock Hotel Panama Megapolis, Hard Rock Hotel & Casino Punta Cana, Hard Rock Hotel Rivera Maya, Hard Rock Hotel San Diego and Hard Rock Hotel Vallarta.