Sante Fe's Rosewood Inn of the Anasazi recently began notifying guests who stayed at the hotel between June 18, 2012 and March 21, 2013 that their names and credit card numbers may have been accessed by an unauthorized person. It's not clear exactly how many former guests may be affected.
Anasazi was notified by its credit card processor around March 21, 2013 that it had been identified as the common point of purchase for credit cards involved in a series of fraudulent transactions. The hotel then hired forensic investigators, who determined that Anasazi had been targeted by cyber attacks.
"The forensic experts uncovered evidence that as early as June 18, 2012 the cyber attackers installed malware apparently designed to perform certain functions, including eventually transmitting credit card data outside the secure network," hotel controller Kenneth Carone wrote in the notification letter [PDF file].
Former guests who may be affected by the breach are being offered one year of free identity protection services from AllClear ID.