Donald Trump's hotel business 'targeted by cyber terrorists'

Credit card systems at Trump Hotels hacked for second time in a year

Trump Hotel Collection, the hotel business belonging to US Presidential hopeful Donald Trump, has fallen victim to an attack on its credit card systems, the company has confirmed, blaming the attack on "cyber terrorists".

The hack first came to light when banking sources told security researcher Brian Krebs they had noticed "a pattern of fraud on customer credit cards that suggests hackers have breached credit card systems at some - if not all - of the Trump Hotel Collection properties".

Also known as Trump Hotels, the business owns several luxury hotels located primarily in the US, but also Canada, Brazil and the UK.

In a statement to IT Pro, Eric Trump, Donald Trump's son and one of the co-managers of Trump Hotels, said: "Like virtually every other company these days, we are routinely targeted by cyber terrorists whose only focus is to inflict harm on great American businesses. We are in the midst of a thorough investigation on this matter and are working with the US Secret Service and the FBI to help catch these criminals and prosecute [them] to the full extent of the law."

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

"We are committed to safeguarding all guests' personal information and will continue to do so vigilantly," he added.

The organisation was the subject of a credit card system breach last July, which was discovered after several banks traced back strings of fraudulent transactions to stays at Trump Hotel properties, pointing to it as the root of the breach.

But this is also the latest case in a long list of international hotel firms being targeted by criminals for the credit card information they hold.

Tod Beardsley, security research manager at security firm Rapid7, described the news as "eerily familiar".

"While it's possible that the real story behind the breach could be anything from a disgruntled insider, to a breach of the core IT systems used in Trump properties, or some unique method of obtaining credit card data from Trump customers, [it] sounds like many of the point-of-sale (POS) compromises that have recently hit major hotel and hospitality companies over the last 18 months," he said.

"I would be surprised if the techniques used by the attackers in this case were substantively different from those used against Starwood, Hyatt, and Hilton. We've seen that in the hotel industry, the POS systems are generally the weakest link in the IT chain, and technically savvy criminal organisations have clearly figured this out," he added.

Advertisement - Article continues below

Trump Hotels has told Krebs it is looking into these latest reports. IT Pro also approached the company for a response to the apparent breach, but had not received a reply at the time of publication.

Main image credit: Tony Webster on Flickr

This article was originally published on 05/04/2016 and has since been updated with additional information, most recently on 06/04/2016.

Featured Resources

What you need to know about migrating to SAP S/4HANA

Factors to assess how and when to begin migration

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

Testing for compliance just became easier

How you can use technology to ensure compliance in your organisation

Download now

Best practices for implementing security awareness training

How to develop a security awareness programme that will actually change behaviour

Download now
Advertisement

Recommended

Visit/security/internet-security/354484/facebook-exec-calls-cambridge-analytica-scandal-a-non-event
internet security

Facebook exec calls Cambridge Analytica scandal a "non event"

8 Jan 2020
Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019
Visit/policy-legislation/34515/what-has-donald-trump-done-for-the-tech-industry-so-far
Policy & legislation

What has Donald Trump done for the tech industry so far?

27 Sep 2019

Most Popular

Visit/policy-legislation/data-governance/354496/brexit-security-talks-under-threat-after-uk-accused-of
data governance

Brexit security talks under threat after UK accused of illegally copying Schengen data

10 Jan 2020
Visit/security/cyber-security/354468/if-not-passwords-then-what
cyber security

If not passwords then what?

8 Jan 2020
Visit/policy-legislation/31772/gdpr-and-brexit-how-will-one-affect-the-other
Policy & legislation

GDPR and Brexit: How will one affect the other?

9 Jan 2020
Visit/web-browser/30394/what-is-http-error-503-and-how-do-you-fix-it
web browser

What is HTTP error 503 and how do you fix it?

7 Jan 2020