Newsroom

June 28, 2016

Las Vegas hotel reports malware attack

The Hard Rock Hotel & Casino in Las Vegas this week said customer card data was breached due to a malware attack on its point-of-sale system.

Hard Rock said the affected cards were used at restaurant and retail locations between Oct. 27 and March 21. The breach was discovered in May, according to The Wall Street Journal.

Affected card information included names, card numbers, expiration date and verification codes. The hotel said it is working with law enforcement and cybersecurity firms. It did not disclose the number of customers affected.

NAFCU continues to push for a strong data security standard for retailers through the "Data Security Act" (H.R. 2205/S. 961), which would hold retailers to the same standards credit unions already follow under the Gramm-Leach-Bliley Act and institute consumer notification requirements.