Nevada among 27 states settling with Sabre over data breach
LAS VEGAS — Nevada and 26 other U.S. states will receive part of $2.4 million settlement from hotel booking system operator Sabre Corp. following an investigation of a 2016-17 data breach, state Attorney General Aaron Ford said Wednesday.
The Silver State will receive a little more than $47,000, Ford said.
Sabre representatives did not immediately respond to email messages.
The breach exposed the data of approximately 1.3 million credit cards through Sabre Hospitality Solutions’ SynXis Central Reservation system, which connects business travel coordinators, agencies and online booking companies with Sabre hotel customers, Ford said in a statement.
The company disclosed in a U.S. Securities and Exchange Commission filing in May 2017 that the breach that had occurred between August 2016 and March 2017.
Notice to consumers was provided by hotels, resulting in some notices being issued as late as 2018, Ford said, and some consumers receiving multiple notices.
Sabre didn’t meet requirements of Nevada law to notify consumers “in the most expedient time possible,” the attorney general said.
The settlement requires Sabre to ensure that customers were notified, plan for possible future incidents and adopt any recommendations for network security from an independent assessment.