PCI POS breach

The California based hotel company, Evans Hotels, has become a recent victim of compromised payment card data.

Evans Hotels- which operates the Bahia Resort Hotel, Catamaran Resort Hotel & Spa, and The Lodge at Torrey Pines- admitted to having used back-up card readers that do not encrypt credit card data when swiped. To add accident to injury, they later discover that malware had been installed on the front desk computers of all properties.

The number of victims affected by this Point-of-Sale (POS) breach is currently uncertain, but Evans Hotel has determined that cards swiped through the back-up readers between September 2014 and March 5 2015 may have had their credentials compromised.

The backup payment card readers have since been removed from all properties and the hotel chain is working with a computer security firm to implement additional security initiatives.

An announcement recently published on the Evans Hotel website stated, “We worked extensively to identify only those guests whose cards were swiped through the backup readers during this time frame, but we were not able to reliably make that distinction from our records. Because we were not able to specifically identify the small percentage of guests whose cards were swiped through the backup readers, if you used a card at one of our properties during this time frame, we recommend that you regularly review your account statement for any unauthorized activity”.

According to the Verizon 2014 Data Breach Investigations Report, industries most commonly affected by POS intrusions often include: Restaurants, hotels & grocery stores. It’s vitally important that hospitality organizations both large and small take the initiative to implement security solutions like File Integrity Monitoring and Change & Configuration Management within their IT environments to help protect their customer’s credentials & information from a possible breach.


See more on State of California Data Security Breach Reporting

Read the full release on the Evans Hotel Website

You can read the full article on SC Magazine here



NNT Suite of Products

change tracker gen7r2 logo

Combine industry leading Device Hardening, File Integrity Monitoring, Change Control, Configuration Management & Compliance Management into one easy to use solution that can scale to the most demanding environments!

fastcloud logo

Automatically evaluate and verify the authenticity of file changes in real-time with NNT FAST™ (File Approved-Safe Technology) Integrity Assurance.

log tracker logo logo

Comprehensive and easy to use security information & event log management with intelligent & self-learning correlation technology to highlight potentially harmful activity in seconds.

vulnerability tracker logo

Continuously scan and identify vulnerabilities with unparalleled accuracy and efficiency, protecting your IT assets on premises, in the cloud and mobile endpoints.

USA Offices
New Net Technologies LLC
Suite #10115, 9128 Strada Place
Naples, Florida, 34108
1175 Peachtree St NE
Atlanta, Georgia, 30361.
4145 SW Watson, Suite 350
Beaverton, Oregon, 97005.

Tel: (844) 898-8358
email [email protected]
UK Office
New Net Technologies Ltd
Rivers Lodge, West Common
Harpenden, Hertfordshire

Tel: 01582 287310
email [email protected]
CIS benchmarking SEWP Cybersecurity 500Sans Institute Now Certified
Copyright 2019, New Net Technologies LLC. All rights reserved. 
NNT and Change Tracker are registered trademarks of New Net Technologies LLC.
All other product, company names and trademarks are the property of their respective owners.