Business & Economy

Starwood warns of data breach at 54 of its hotels

A file photo of the W Hotel in Hollywood, Calif. It's one of several Starwood hotels affected by the breach, according to the company.
A file photo of the W Hotel in Hollywood, Calif. It's one of several Starwood hotels affected by the breach, according to the company.
Alexandra Wyman/Getty Images

Starwood says hackers were able to see debit and credit card information of some people that dined or shopped at 54 of its hotels, including some Sheraton, Westin and W locations.

The Stamford, Connecticut-based hotelier says malware was found in payment systems at hotel restaurants, gift shops and other retail areas, but not at the front desk where guests pay for their stay.

The hotels include a St. Regis in Bal Harbour, Florida, and Sheraton, Westin and W locations in several cities, including Los Angeles and New York. The malware, which has since been removed, infected payment systems since as early as November 2014.

Starwood Hotels & Resorts Worldwide Inc. says the malware exposed names on the cards as well as card numbers, security codes and expiration dates.

Here's a list of affected SoCal hotels from the company's website

Property Location Dates of potential exposure  
The Westin South Coast Plaza Costa Mesa 11/07/2014 to 12/03/2014  
The Westin Los Angeles Airport Los Angeles 03/02/2015 to 04/04/2015  
W Hollywood Los Angeles 03/02/2015 to 04/06/2015  
Sheraton Fairplex Hotel & Conference Center Pomona 03/02/2015 to 04/13/2015  
The Westin Mission Hills Golf Resort & Spa Rancho Mirage 01/06/2015 to 02/10/2015