mandarin oriental data breach

Payment card breach at Mandarin Oriental hotel chain

When you spend $800 a night for a hotel room, you expect the works: ultra-plush bathrobes, high thread count linens and designer toiletries. What don’t you expect? Having your AmEx black card details stolen at the front desk.

Luxury hotel chain Mandarin Oriental Hotels is apparently the victim of a recent payment card data breach that exposed guests’ credentials. A pattern of fraudulent charges strongly suggests the breach at Mandarin Oriental, according to security reporter Brian Krebs, who – as is often the case – broke this story.

Manadarin Oriental confirmed to Krebs that it is investigating a breach but did not indicate how many of its 28 worldwide locations were affected. Krebs’ banking sources, though, believe “the breach almost certainly impacted most if not all Mandarin hotels in the United States, including locations in Boston, Florida, Las Vegas, Miami, New York, and Washington, D.C.”

Regarding the timeframe of the theft, according to those same sources the breach “likely dates back to just before Christmas 2014.”

Get personalized data breach alerts when a business you’ve shopped at has been breached.