Data breach at military resort in Germany leaves soldiers open to identity theft
GRAFENWOEHR, Germany — The Armed Forces Recreation Center Edelweiss Lodge and Resort is investigating a data breach that left some guests open to identity theft.
At least 18 guests — primarily soldiers and retirees — who stayed at the resort between November 2017 and February 2018 reported that their credit cards were misused after their stays.
The data breach, which was caused by a malicious program at one of the resort’s work stations, seems to be limited to credit card information.
The recreation center, located at the foot of the German Alps, is working with the U.S. Army Criminal Investigation Command to investigate the incident, and it is taking steps to safeguard its guests' information, Army Instillation Management Command spokesman Scott Malcom said.
The resort has emailed all guests who stayed during the suspect time period to notify them of the situation, “and guide them through steps they can take to protect their credit card security and privacy,” Malcom said.