Go Back  FlyerTalk Forums > Miles&Points > Hotels and Places to Stay > Hilton | Hilton Honors
Reload this Page >

Credit Card Security September 2015: Point of Sale Hilton Data Breach

Credit Card Security September 2015: Point of Sale Hilton Data Breach

Old Sep 22, 2015, 7:34 am
  #1  
Original Poster
 
Join Date: Jan 2006
Location: RIX
Programs: SAS Lifetime Gold, HHonors Lifetime Diamond, TK*G Elite+, airBaltic VIP, Sixt Plat, Hertz Gold
Posts: 1,079
Credit Card Security September 2015: Point of Sale Hilton Data Breach

Multiple banks have asked to cancel existing credit card and get a new one free of charge due to the fact that I've recently paid with a card to Hilton family hotel. No agent knew details. Year 2014 we had this. It is either unlikely slow follow-up from VISA and Mastercard in EU or something new.

Anyone else? Any details or happenings recently?
dabee69 is offline  
Old Sep 22, 2015, 9:40 am
  #2  
FlyerTalk Evangelist
 
Join Date: Jun 2004
Location: MSP
Programs: DL PM, MM, NR; HH Diamond, Bonvoy LT Gold, Hyatt Explorist, IHG Diamond, others
Posts: 12,159
I've used my Hilton Amex at Hiltons with no such effect.

Nor has that number been stolen (at least, not and run into attempted bogus usage).
sethb is offline  
Old Sep 22, 2015, 12:46 pm
  #3  
Original Poster
 
Join Date: Jan 2006
Location: RIX
Programs: SAS Lifetime Gold, HHonors Lifetime Diamond, TK*G Elite+, airBaltic VIP, Sixt Plat, Hertz Gold
Posts: 1,079
No fraudulent transactions on any of my cards
dabee69 is offline  
Old Sep 22, 2015, 7:15 pm
  #4  
FlyerTalk Evangelist
 
Join Date: Jan 2005
Location: home = LAX
Posts: 25,927
It wasn't the credit cards there were hacked; it was the Hilton HHonors accounts. Hacking a Hilton HHonors accounts let someone use the credit card on file to pay for their own stay, but it didn't gain them access to the credit card on file beyond that.

So there's no need for banks to replace the card, since the card itself was not hacked or stolen, just in some cases used without permission. If yours wasn't used without permission, and your account wasn't hacked, you aren't due anything (except a CAPTCHA maybe*) from either the card issuer or Hilton HHonors.

* The CAPTCHA, followed by the elimination of the 4-digit PIN as a way to log in, was Hilton's response to those hacks.
sdsearch is offline  
Old Sep 23, 2015, 5:53 am
  #5  
 
Join Date: Jun 2005
Location: DTW/FNT
Programs: Delta (nee NW), Hilton Diamond. IHG (PT)
Posts: 4,823
Originally Posted by dabee69
Multiple banks have asked to cancel existing credit card and get a new one free of charge due to the fact that I've recently paid with a card to Hilton family hotel. No agent knew details. Year 2014 we had this. It is either unlikely slow follow-up from VISA and Mastercard in EU or something new.

Anyone else? Any details or happenings recently?
Sounds like marketing by the credit card companies, possibly due to the Oct 1 changes involving chip card readers.

Bob H
BobH is offline  
Old Sep 23, 2015, 7:25 am
  #6  
Original Poster
 
Join Date: Jan 2006
Location: RIX
Programs: SAS Lifetime Gold, HHonors Lifetime Diamond, TK*G Elite+, airBaltic VIP, Sixt Plat, Hertz Gold
Posts: 1,079
Cards had chips. It seems only VISA and MasterCard are worried here. No questions from Amex.

When Adobe CC info was stolen, Amex was the first to replace my card.
dabee69 is offline  
Old Sep 23, 2015, 7:43 am
  #7  
 
Join Date: Sep 2000
Location: OH
Programs: AA Lifetime Plat, Marriot Lifetime Gold
Posts: 9,522
Originally Posted by dabee69
Cards had chips. It seems only VISA and MasterCard are worried here. No questions from Amex.

When Adobe CC info was stolen, Amex was the first to replace my card.
It is NOT Visa and MasterCard responsible for replacing your cards - that is a decision taken solely by the card issuer (a credit union or bank). Unlike AMEX, Visa and MasterCard are not the creditors nor issuers of your credit.
Redhead is offline  
Old Sep 23, 2015, 9:00 am
  #8  
 
Join Date: Feb 2013
Programs: Hilton Diamond
Posts: 4,194
This has nothing to do with Hilton, but I got an e-mail a few days ago that I was getting a new Mastercard card from one of my two card providers and they cited the new chip technology on the card. They gave me a new card out of the blue with a new number about 18 months ago citing security as well so not sure. My current cards don't have chips so I am not thrilled about getting one with the whole RFID stealing issue. I have a VISA from a money center bank which has not had any such changes.
Miesque is offline  
Old Sep 23, 2015, 1:52 pm
  #9  
FlyerTalk Evangelist
 
Join Date: Jan 2005
Location: home = LAX
Posts: 25,927
Originally Posted by Miesque
My current cards don't have chips so I am not thrilled about getting one with the whole RFID stealing issue.
Huh? These cards don't necessarily come with RFID. You're confusing EMV (the visible chip) with Contactless. They may or may not come on the same card, depending on the bank (and/or the specific card). I certainly have many EMV chip cards without Contactless (NFC). And without Contactless, how can you have an RFID issue? EMV chips depend on hard physical contact, that's why they're visible on the front of the card, because it has to make physical contact with the reader.

In any case, if you are concerned about RFID, there are RFID-blocking wallets out there.

But as you said, this is the wrong thread. The thread for contactless is:
The thread for EMV chip cards is:
(Both are in the Credit Cards forum.)

Last edited by sdsearch; Sep 23, 2015 at 1:59 pm
sdsearch is offline  
Old Sep 23, 2015, 3:01 pm
  #10  
 
Join Date: Feb 2013
Programs: Hilton Diamond
Posts: 4,194
Originally Posted by sdsearch
Huh? These cards don't necessarily come with RFID. You're confusing EMV (the visible chip) with Contactless. They may or may not come on the same card, depending on the bank (and/or the specific card). I certainly have many EMV chip cards without Contactless (NFC). And without Contactless, how can you have an RFID issue? EMV chips depend on hard physical contact, that's why they're visible on the front of the card, because it has to make physical contact with the reader.

In any case, if you are concerned about RFID, there are RFID-blocking wallets out there.

But as you said, this is the wrong thread. The thread for contactless is:
The thread for EMV chip cards is:
(Both are in the Credit Cards forum.)
Thanks, I was just assuming they were the same thing. Shows how much attention I spend to the mechanics of a credit card.
Miesque is offline  
Old Sep 23, 2015, 10:13 pm
  #11  
 
Join Date: Oct 2009
Location: PHL/EWR
Programs: AA, US, WN, HHonors Diamond, Hyatt Plat
Posts: 1,528
Originally Posted by dabee69
Multiple banks have asked to cancel existing credit card and get a new one free of charge due to the fact that I've recently paid with a card to Hilton family hotel. No agent knew details. Year 2014 we had this. It is either unlikely slow follow-up from VISA and Mastercard in EU or something new.

Anyone else? Any details or happenings recently?
A new one free of charge? I never heard of a charge for re-issuing a credit card.
BrlDsguise is offline  
Old Sep 25, 2015, 7:39 pm
  #12  
Marriott Contributor Badge
 
Join Date: Sep 2002
Location: Bainbridge Island, WA
Posts: 8,930
Point of Sale Hilton Data Breach

It appears sales from both the Hilton lobby sundry shops and hotel restaurants are suspected in a large data breach.

https://krebsonsecurity.com/2015/09/...el-properties/
david55 is online now  
Old Sep 26, 2015, 9:06 am
  #13  
 
Join Date: Apr 2012
Programs: UA 1K, Hilton Diamond
Posts: 113
Another day another breach. Until there is real accountability at the board and CEO level, these will continue.
wav3rider is offline  
Old Sep 26, 2015, 6:08 pm
  #14  
FlyerTalk Evangelist
 
Join Date: Jan 2000
Posts: 15,323
Posting for everyone's interest here, one time on the HH forum. In the last 24 hours Two of my banks have gotten in touch with me to inform me that my cards are blocked and they are sending me new ones due to the data breach and that this goes back as far as January, and effects many Hiltons outside of the United States as well, and not just sundries as at one hotel there were none, furthermore I should mention that one is a chip card. I think that by Monday or Tuesday this is going to be a major story/issue.
hfly is online now  
Old Sep 27, 2015, 2:54 pm
  #15  
 
Join Date: Jun 2005
Location: DTW/FNT
Programs: Delta (nee NW), Hilton Diamond. IHG (PT)
Posts: 4,823
Originally Posted by hfly
Posting for everyone's interest here, one time on the HH forum. In the last 24 hours Two of my banks have gotten in touch with me to inform me that my cards are blocked and they are sending me new ones due to the data breach and that this goes back as far as January, and effects many Hiltons outside of the United States as well, and not just sundries as at one hotel there were none, furthermore I should mention that one is a chip card. I think that by Monday or Tuesday this is going to be a major story/issue.
Have you noticed anything awry on any of your statements?

Bob H
BobH is offline  

Thread Tools
Search this Thread

Contact Us - Manage Preferences - Archive - Advertising - Cookie Policy - Privacy Statement - Terms of Service -

This site is owned, operated, and maintained by MH Sub I, LLC dba Internet Brands. Copyright © 2024 MH Sub I, LLC dba Internet Brands. All rights reserved. Designated trademarks are the property of their respective owners.