NEW YORK -- Hyatt, Sheraton, Marriott and Westin hotels in Colorado, plus nine other states and the District of Columbia may have been targeted by hackers for months.
According to the hotel operator HEI Hotels & Resorts, malware put into place in at least 20 locations may have collected names, card account numbers, card expiration dates and verification codes.
Data from customers may have been collected from early December, through late June. At some properties, HEI said, data collection may have begun as early as March 2015.
HEI said in a company release that "We are treating this matter as a top priority, and took steps to address and contain this incident promptly after it was discovered."
The company says the incident has been contained and customers can safely use cards at all of its properties.
Read more on HEI's website.
Hotel list:
California
- Hyatt Centric Santa Barbara
- Le Meridien San Francisco
- Renaissance San Diego Downtown Hotel
- San Diego Marriott La Jolla
- The Westin Pasadena
Colorado
- The Westin Snowmass Resort in Snowmass Village
Florida
- Boca Raton Marriott at Boca Center
- Intercontinental Tampa Bay
- Royal Palm South Beach Miami
- Westin Fort Lauderdale
Illinois
- Hotel Chicago Downtown
Minnesota
- The Hotel Minneapolis Autograph Collection
- The Westin Minneapolis
Pennsylvania
- The Westin Philadelphia
Tennessee
- Sheraton Music City Hotel in Nashville
Texas
- Dallas Fort Worth Marriott Hotel & Golf Club
Vermont
- Equinox Resort Golf Resort & Spa in Manchester Village
Virginia:
- Le Meridien Arlington
- Sheraton Pentagon City, Arlington
District of Columbia
- The Westin Washington, D.C. City Center