Landry's, owner and operator of the Golden Nugget Hotels & Casinos and several restaurant brands, has completed an investigation into a payment-card breach at more than 300 of its restaurants, hotels and casinos. The company first discovered the breach in December and provided a list of impacted properties.
The breach took place at the company’s food and beverage outlets, spas and entertainment locations, the company said. All six Golden Nugget properties were affected. The exposed information includes cardholder names, card numbers, expiration dates and internal verification codes. Findings from the investigation show that criminal attackers were able to install malware on payment card processing devices that lifted the data from the magnetic swipe stripe of payment cards, reports Info Security.
Most of the activity took place between May 4, 2014 and March 15, 2015, as well as between May 5, 2015 and Dec. 3, 2015. A “small percentage” of locations had breaches between March 15, 2015 and May 4, 2015. The hackers installed a program in the company’s systems that captured payment-card information after they were swiped.
The company said it worked with a “leading cybersecurity firm” and, among other security measures, added end-to-end encryption on its payment systems. Company officials said they have heightened security measures to prevent the issue from happening again but urge anyone who has been to one of their affected locations in the past two years to check for fraud on their cards, reports the Press of Atlantic City.