P2017-ND-142

KURU Footwear

The Organization manages a number of hotel properties. On June 6, 2017, the Organization was notified by its service provider that an unauthorized party obtained access to account credentials that permitted unauthorized access to unencrypted payment card information as well as certain reservation information for a subset of hotel reservations processed through the service provider?s central reservation system (?CRS?). The incident was discovered by the service provider on or about March 10, 2017. Access to payment card and other reservation information occurred between August 10, 2016 and March 9, 2017. Multiple hotels were impacted by this incident.

File Type: pdf
Categories: 2017
Tags: Unauthorized disclosure