According to a press release from the Hard Rock Hotel & Casino chain, the financial data of its customers may be at risk, due to a failure of its hotel reservation system.
The system in question is a third party application and this is not the first time a data breach has been caused by a third party provider.
Make sure you conduct thorough risk assessments and understand the nature of all connected services. This includes things like maintenance portals and service access portals. Remember Target was hacked through its air conditioning maintenance portal.
If you are interested in reading the full statement click here.