Mandarin Oriental credit card system hacked

Mandarin Oriental has confirmed the security breach at ten of its hotels that was announced earlier this year. In a statement on its website dated July 10, but updated on August 28, the luxury hotel chain said "it appears that a hacker used malware to obtain access to certain credit card systems in a number of Mandarin Oriental hotels". The hotels affected are:

• Mandarin Oriental, Boston between June 18, 2014 and March 12, 2015
• Mandarin Oriental, Geneva between June 18, 2014 and March 3, 2015
• Mandarin Oriental, Hong Kong between June 18, 2014 and February 10, 2015
• Mandarin Oriental Hyde Park, London between June 18, 2014 and March 5, 2015
• Mandarin Oriental, Las Vegas between June 18, 2014 and October 16, 2014
• Mandarin Oriental, Miami between June 18, 2014 and March 3, 2015
• Mandarin Oriental, New York between June 18, 2014 and January 18, 2015
• Mandarin Oriental, San Francisco between June 18, 2014 and February 14, 2015
• Mandarin Oriental, Washington DC between June 18, 2014 and January 20, 2015
• The Landmark Mandarin Oriental, Hong Kong between June 18, 2014 and February 3, 2015

Mandarin Oriental said that it believes the hacker "may have used the malware to acquire the names and credit card numbers of guests who used a credit card for dining, beverage, spa, guest rooms, or other products and services" at these properties during those time periods. It added that it has not found "any evidence of acquisition or misuse of credit card pin numbers or security codes, or any other personal guest data". The chain said that since it was first alerted about the attack it has "investigated the incident across multiple countries and properties, working in coordination with law enforcement and the credit card companies". It said it has "timed this notice to avoid disrupting or impeding their concurrent investigations. We have also taken comprehensive steps to ensure that the malware has been removed and that the hacker is no longer in our systems." Mandarin Oriental has encouraged guest to remain vigilant and to keep a close eye on their card statements. It said: "Even if no signs of fraud are found on reports or account statements, security experts suggest that credit reports and account statements should be checked periodically." The helpline numbers are:

• (877) 202 4625 (for calls from the United States and Canada)
• 00 800 8777 7888 (for calls from the United Kingdom)
• 0800 561270 (for calls from Switzerland)
• 800 901342 (for calls from Hong Kong)
• +1 606 878 4212 (for all other calls).

Callers should use the following reference number when calling: 6322070615. To read a review of Mandarin Oriental Tokyo, click here. mandarinoriental.com Tom Otley