Breach, Compliance Management, Threat Management, Data Security, Incident Response, Malware, Network Security, TDR

Hotel operation run by Donald Trump settles breach suit with $500K fine

The hotel chain operated by Republican presidential candidate Donald Trump will fork over $500,000 in fines and improve the security of its computer network in a settlement for the exposure of 70,000 credit card numbers following several breaches, New York Attorney General Eric Schneiderman announced on Friday.

Despite forensic investigations showing that the networks of several of the properties of Trump International Hotels Management, aka Trump Hotel Collection (THC), had been infiltrated with malware designed to steal credit card numbers, and notice by several banks of fraudulent card transactions, THC waited four months to provide an alert to the public, a violation of the state's General Business Law § 899-aa, requiring notice to consumers “in the most expedient time possible and without unreasonable delay,” the AG's announcement stated.

As well as the financial penalty, the hotel chain agreed to strengthen employee training, risk assessments and testing of "key controls, systems, and procedures."

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.