Banking industry sources have confirmed to KrebsOnSecurity that the Trump Hotel Collection appears to be dealing with another credit card system breach – the second in less than a year. It said it had heard from three sources in the financial sector that they have noticed a pattern of fraud on customer credit cards which suggests that hackers have breached credit card systems at some - if not all - of the Trump Hotel Collection properties.
Attacks on hotel computer and reservation systems are not new – Hilton (Embassy Suites, Doubletree, Hampton Inn and Suites, and Waldorf Astoria Hotels & Resorts), Hyatt, Starwood (54 of its Sheraton, Westin, W Hotels), Mandarin Oriental, White Lodging and more have had compromises in 2015.
Fraud is increasingly going online and the entry point in many of the attacks was via malware infecting point of sale systems at gift shops, restaurants, bars, or other on-property products.
Chris Webber, Security Strategist for Centrify, a leading provider of provide full identity security for employees, customers, partners, privileged IT admins and outsourced IT, said the report of the breach at Trump Hotel Collection properties was not surprising, given the amount of public attention on Donald Trump himself, as well as the general fact that hotels are a popular target for attackers.
“If we continue to rely on passwords for protection, we should all expect to be breached as well,” he added."
One thing we can be sure of is that Trump is a target for both Hacktivists and financially-motivated attackers. Just last month Hacktivist group Anonymous posted a video declaring Trump an 'enemy of the constitution' and included a 'gift' of his social security number and other personal information.
"Whilst Trump is a polarising figure, we must recognise that we are all targets, and we are only as strong as our weakest password," he said.
Perhaps Anonymous said it best in their video, addressing Donald Trump: 'You should have expected us'.