Travel company Sabre concluded its investigation into the security breach of its reservation system that serves more than 32,000 properties and found the attackers' access was limited to a subset of its bookings.
Sabre, which disclosed the breach in early May after attackers infiltrated its Sabre Hospitality Solutions (SHS) reservation system, found payment card information was accessed for a limited subset of hotel bookings.
The travel company also discovered that a large percentage of the hotel bookings were made without the use of revealing the security code on the back of the payment card, and other bookings were processed via virtual card numbers.
Sabre noted that attackers did not access personal information, such as Social Security numbers, nor passport or driver's license numbers. And while its investigation did not reveal that attackers removed information from Sabre's reservation system, it notes there is a possibility that it may have occurred.
Read more about Sabre's investigation here.