The California Office of the Attorney General reported on August 12, 2016, that HEI Hotels & Resorts experienced a security incident involving unauthorized access to payment card information of customers at certain properties. The breach could have affected data from March 2, 2015, to June 21, 2016, though the exact number of individuals affected is unknown and the types of information compromised included payment card data such as names and card numbers.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-63346
TPRM report: https://www.rankiteo.com/company/hei-hotels-&-resorts
"id": "hei441072625",
"linkid": "hei-hotels-&-resorts",
"type": "Breach",
"date": "3/2015",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Hospitality',
'name': 'HEI Hotels & Resorts',
'type': 'Hospitality'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'data_exfiltration': True,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Payment card data',
'Names',
'Card numbers']},
'date_detected': '2016-08-12',
'date_publicly_disclosed': '2016-08-12',
'description': 'Unauthorized access to payment card information of customers '
'at certain properties.',
'impact': {'data_compromised': ['Payment card data', 'Names', 'Card numbers'],
'payment_information_risk': True},
'references': [{'date_accessed': '2016-08-12',
'source': 'California Office of the Attorney General'}],
'title': 'HEI Hotels & Resorts Data Breach',
'type': 'Data Breach'}