Kimpton and Hotels announced today that it has completed its investigation of the previously announced payment card security incident. A malware was installed on its servers that processed payment cards used at the restaurants and front desks of at some of its hotels. The malware searched for track data read from the magnetic stripe of a payment card as it was being routed through the affected server. The malware primarily found track data that contained the card number, expiration date, and internal verification code, but in a small number of instances it may have found the track that also contains the cardholder name.
