On Monday, HEI Hotels & Resorts became the most recent hospitality company to be preyed upon by hackers. But according to Stu Sjouwerman, founder and CEO of employee training and security company KnowBe4, hotels should be aware of the dangers of credit theft by now, though they still have a long way to go. If the industry is going to learn from its mistakes, Sjouwerman has four takeaways:1. Understand the riskCurrently, HEI is saying the breach was contained to 20 locations across 10 states and the District of Columbia. But Sjouwerman said that these hacks target point-of-sale systems used in hotel food-and-beverage outlets, and any location operated by HEI using that POS system is vulnerable.“Many chains all use the same infrastructure. If someone were to break in, the amount of data they could access is enormous,” Sjouwerman said. “To the bad guys time is money, so they go where the biggest hits will net them the most cards.”And because hackers are so good at hiding their tracks, data breaches often go unnoticed until banks detect fraudulent charges. But by then it’s too late; the information has been disseminated and most likely sold online for a profit. Even worse, a majority of hackers operate overseas, making the likelihood of their arrest slim to none.