PARADISE ISLAND — If you have clients who stayed at Atlantis, Paradise Island between Nov. 1, 2016 and April 3, 2017, they may have been impacted by a data security breach.
According to the resort, a recent data security incident may have compromised the security of payment information of some customers who used debit or credit cards at food and beverage and retail locations at the resort between this period.
“We have engaged professionals who have corrected the issue and customers can now safely use their credit and debit cards at the food and beverage and retail locations at the Resort. This incident did not affect credit and debit cards used to make or pay for hotel reservations or purchases made by guests who charged their food and beverage or retail purchases back to their room,” said the resort.
This isn’t the first time Atlantis has reported a security incident. Back in November 2016, they announced a similar incident that occurred between March 9 and Oct. 22, 2016.
WHAT HAPPENED?
The resort began investigating unusual activity after receiving reports from its credit card processor. The resort immediately began working with third-party forensic experts to investigate these reports and to identify any signs of compromise on its computer systems. On May 10, 2017, the resort confirmed the existence of suspicious files on its computer systems that indicated a potential compromise of customers’ credit and debit card data for some credit and debit cards used at food and beverage and retail locations at the resort.
The resort has been working with third-party forensic investigators to determine what happened and what information was affected. The resort has confirmed that malware may have captured data from some credit and debit cards used at food and beverage and retail locations at the resort. The resort has removed the malware at issue to contain this incident and implemented additional procedures in an effort to prevent any further unauthorized access to customers’ credit and debit card information. This incident did not affect credit and debit cards used to make or pay for hotel reservations or purchases made by guests who charged their food and beverage or retail purchases back to their room.
WHAT INFORMATION WAS INVOLVED?
Through the ongoing third-party forensic investigations, the Resort confirmed that malware may have captured credit and debit card data from some credit and debit cards used at food and beverage and retail locations between Nov. 1, 2016 and April 3, 2017. The information at risk as a result of this event for credit or debit cards used at the impacted locations includes the card number, expiration date and CVV. This incident did not involve customers’ Social Security numbers as this information is never collected by the resort. This incident did not involve customers’ names or PIN numbers, either.
FOR MORE INFORMATION
Customers can email notices@atlantisparadise.comfor more information regarding this incident. Customers can also find information on this incident and what they can do to better protect against fraud and identity theft at atlantisbahamas.com.
The resort encourages customers who believe they may be affected by this incident to take additional action to further protect against possible identity theft or other financial loss. At no charge, customers can have these credit bureaus place a “fraud alert” on their file, alerting creditors to take additional steps to verify their identity prior to granting credit in their name.
Customers may also place a security freeze on their credit reports. A security freeze prohibits a credit reporting agency from releasing any information from a customer’s credit report without the consumer’s written authorization.