Update 6/17/20: There is now a class action settlement available for this data breach. The settlement pool is only $1.55 million and only provides payouts for expenses and unauthorized charges as a result of this data breach.
Original post 04/17/17: Earlier this year IHG announced that 12 of their properties had compromised payment terminals. It looks like they’ve had another data breach with 1,175 properties in total being affected, you can view the list of affected properties by clicking here. More details from their statement:
The investigation identified signs of the operation of malware designed to access payment card data from cards used onsite at front desks for certain IHG-branded franchise hotel locations between September 29, 2016 and December 29, 2016
Unlike the previous breach this seems to have affected front desk payments. Worth checking to see if you stayed at one of the affected properties between September 29th and December 29th, 2016. You’d hope that IHG would pro-actively contacting customers that are possibly affected, but given that this is the first I’ve heard of this and they issued this statement on April 14th that’s unlikely.
Hat tip to /r/churning
