DENVER—The list of hotels being breached by cyber thieves is getting longer, with two more resort chains reporting data theft.
Millennium Hotels & Resorts North America, based in Denver, and Noble House Hotels and Resorts, based in Kirkland, Wash., both say point of sale malware infections led to the intrusions, according to a report CUInfoSecuroty.com.
Millennium is reporting that card data was stolen from food and beverage POS systems at all 14 of its U.S. hotels. Noble House Hotels reported that only one of its properties has been compromised—its Ocean Key Resort & Spa in Key West, Fla.,
CUInfoSecuroty.com reported that both compromises may involve cardholders' names, payment card numbers, expiration dates and CVV numbers.
The website added that information obtained from the Secret Service indicate that one cybercrime group may be responsible for both thefts.
Millennium hotels reported that its properties affected by the breach are located in Anchorage, Alaska; Boston; Boulder, Colo.; Buffalo, N.Y.; Chicago; Cincinnati; Durham, N.C.; Los Angeles; Minneapolis; Nashville, Tenn.; New York; and Scottsdale, Ariz.