Second data breach at Hard Rock Hotel & Casino

The Hard Rock Hotel & Casino in Las Vegas, Nevada, announced they have experienced their second data breach in just over a year.

US.- The Hard Rock Hotel & Casino in Las Vegas announced that a card-scraping malware had been installed on its point-of-sale system, which gave hackers access to payment card data, including the cardholder’s name, card number, expiration date and verification code, although in some cases, the malware was only able to obtain the card data without the customer’s name.

The malware was active between October 27, 2015 and March 21, 2016, so a large group of visitors were affected, though no specific numbers have been released yet. Hard Rock discovered the breach after it received reports of fraudulent activity. The company then hired investigators who uncovered the unauthorised access of the POS network and found the malware.

Hard Rock suffered a similar breach last May, when hackers had accessed customer credit and debit card information from September 2014 through April 2015. That time, the hackers obtained cardholder names, card numbers and CVV codes.

“It is always advisable to remain vigilant to the possibility of fraud by reviewing your payment card statements for any unauthorised activity,” said Hard Rock in a statement. “You should immediately report any unauthorized charges to your card issuer because payment card rules generally provide that cardholders are not responsible for unauthorized charges reported in a timely manner. The phone number to call is usually on the back of your payment card.”