Starwood Hotels & Resorts Worldwide has disclosed that malware infected point-of-sale systems at 54 North American hotels, including 26 Westins, 18 Sheratons and seven W-branded hotels. The malware enabled unauthorized parties to access cardholder names, card numbers, security codes and expiration dates. A third-party investigation found that it affected restaurants, gift shops and other point-of-sale systems but not guest reservations or Starwood Preferred Guest membership systems. According to a list of the hotels and dates that Starwood released today, some breaches began in November 2014, but most started in March 2015. A similar
breach hit Trump Organization hotels this summer, and the U.S. Federal Trade Commission has a
suit against Wyndham Worldwide Corp. for failing to protect consumer data.