On July 10, 2015, the California Office of the Attorney General reported a data breach involving Mandarin Oriental that occurred on June 18, 2014. The breach was a result of a malware attack that potentially exposed names and credit card numbers of some guests, but no PIN numbers or security codes were confirmed to have been accessed.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-56994
TPRM report: https://scoringcyber.rankiteo.com/company/mandarin-oriental-hotel-group
"id": "man233072725",
"linkid": "mandarin-oriental-hotel-group",
"type": "Cyber Attack",
"date": "6/2014",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Hospitality',
'name': 'Mandarin Oriental',
'type': 'Hospitality'}],
'attack_vector': 'Malware',
'data_breach': {'type_of_data_compromised': ['Names', 'Credit Card Numbers']},
'date_detected': '2014-06-18',
'date_publicly_disclosed': '2015-07-10',
'description': 'A malware attack potentially exposed names and credit card '
'numbers of some guests, but no PIN numbers or security codes '
'were confirmed to have been accessed.',
'impact': {'data_compromised': ['Names', 'Credit Card Numbers']},
'references': [{'date_accessed': '2015-07-10',
'source': 'California Office of the Attorney General'}],
'title': 'Mandarin Oriental Data Breach',
'type': 'Data Breach'}