Add the Mandarin Oriental Hotel Group to the list of companies who've had hackers breach their customer credit card numbers.
Security expert Brian Krebs reported that financial industry sources investigating a recent string of fraudulent payment-card charges noted that the compromised cards all shared a common point of purchase: they'd all recently been used to pay at Mandarin hotels. A company spokesperson confirmed in a statement that:
…. Mandarin Oriental has been alerted to a potential credit card breach and is currently conducting a thorough investigation to identify and resolve the issue …. The Group has identified and removed the malware and is coordinating with credit card agencies, law enforcement authorities and forensic specialists to ensure that all necessary steps are taken to fully protect our guests and our systems ….
Though the company would not offer specific details, Krebs' sources think the breach affected “most if not all” Mandarin hotels in the United States, and probably started sometime just before last Christmas.