A pattern of fraud was being investigated for cards used at restaurants and gift shops at specific Marriott Hotels, including locations in Austin, Chicago, Denver, Los Angeles, Louisville and Tampa from March 23, 2013 through the end of 2013.

According to the original report by KrebsonSecurity, sources were excluding the property management systems as the source of the suspected breach, but rather said “the breach appears to have affected mainly restaurants, gift shops and other establishments within hotels managed by White Lodging."

Franchised Marriott Hotels are required to use Marriott’s property management system.  White Lodging manages payment systems for restaurants and gift shops at its franchise hotels. 

Marriott issued a statement on Saturday stating that the unusual activity affecting Marriott guests was being investigated and that it was working closely with banks, credit card companies and franchisees.  The full statement from Marriott can be found here: http://news.marriott.com/2014/02/marriotts-response-to-white-lodging-data-breach-.html

Kathleen Quilligan of White Lodging provided the following statement via email: “An investigation is in progress, and we will provide meaningful information as soon as it becomes available.”

Original report: http://krebsonsecurity.com/2014/01/hotel-franchise-firm-white-lodging-investigates-breach/