Hyatt said Thursday that it found malicious software in about 250 of its hotels, including five in the Chicago, that may have exposed customers’ credit- and debit-card numbers and other information to hackers.
It’s the first time the hotel operator has listed the hotels affected since it announced it found malware at its hotels in December.
The hotel chain does not know at this time how many customers were affected, a Hyatt spokeswoman said.
The Chicago-area hotels were the Hyatt Regency, Hyatt Regency McCormick Place and the Park Hyatt in Chicago; Hyatt Lodge at McDonald’s Campus in Oak Brook; and the Hyatt Regency O’Hare in Rosemont.
Hyatt Hotels Corp. said the malware was present between July and December within payment-processing systems at its restaurants, spas, front desks and other areas in its hotels.
Cardholder names, card numbers and expiration dates may have been exposed, the company said.
Several other hotel chains reported being hacked last year, including Starwood, Trump Hotel Collection and Mandarin Oriental.
Hyatt said the malware was found at many of its brands, including the Park Hyatt, Hyatt Regency and Andaz. About 100 of the hotels affected were in the U.S. The rest were abroad in cities including London, Paris and Shanghai.
The Chicago-based company has about 630 properties.
BY JOSEPH PISANI, AP Business Writer