News World Two out of 3 hotels accidentally leak guests' personal data -Symantec

Two out of 3 hotels accidentally leak guests’ personal data -Symantec

Two out of three hotel websites inadvertently leak guests’ booking details and personal data to third-party sites, including advertisers and analytics companies, according to research released by Symantec Corp on Wednesday.

The study, which looked at more than 1,500 hotel websites in 54 countries that ranged from two-star to five-star properties, comes several months after Marriott International disclosed one of the worst data breaches in history.

Symantec said Marriott was not included in the study.

Compromised personal information includes full names, email addresses, credit card details and passport numbers of guests that could be used by cybercriminals who are increasingly interested in the movements of influential business professionals and government employees, Symantec said.

“While it’s no secret that advertisers are tracking users’ browsing habits, in this case, the information shared could allow these third-party services to log into a reservation, view personal details and even cancel the booking altogether,” said Candid Wueest, the primary researcher on the study.

The research showed compromises usually occur when a hotel site sends confirmation emails with a link that has direct booking information. The reference code attached to the link could be shared with more than 30 different service providers, including social networks, search engines and advertising and analytics services.

Wueest said 25 percent of data privacy officers at the affected hotel sites did not reply to Symantec within six weeks when notified of the issue, and those who did took an average of 10 days to respond.

“Some admitted that they are still updating their systems to be fully GDPR-compliant,” Wueest said, referring to Europe’s new privacy law, or the General Data Protection Regulation, which took effect about a year ago and has strict guidelines on how organizations should deal with data leakage.

(Reuters)

Top Stories

Commissioner Kyriakidou calls for urgent action to relieve pressure on public hospitals

  Health Commissioner Stella Kyriakidou called for urgent immediate action to protect lives following the rise in the percentages of covid-19 new cases throughout Europe. 'We...

Five students and two teachers tested positive to COVID-10 in occupied areas

Five students and two teachers have tested positive to COVID-19 in the occupied areas. This was announced by “education minister” Nazim Cavusoglu who added that...

New website of the Foreign Ministry in operation as of 27 October

As of yesterday, the new website of the Foreign Ministry is accessible at www.mfa.gov.cy. The new page aims to upgrade and make the public’s communication...

Professor Kostrikkis: Masks are like safety helmets

“I share the people’s discomfort from the use of the protective masks everywhere,” Leondios Kostrikis, Professor of Biological Sciences at the University of Cyprus...

Parties want to deprive corrupted officials from benefits

  DISY, EDEK and the Greens are looking to deprive benefits that state officials receive if they are found guilty of corruption charges. The parties have...

Taste

Squash soup

Ingredients: 1 kg pumpkin, cut into small cubes, approximately 5 cups 2 medium (400g) sweet potatoes, cut into cubes, approximately 2 ½ cups 1 chopped leek, only...

Mezedes

No visit to Cyprus is complete without enjoying the traditional meal of many small dishes known as ‘meze’. This large feast, which has been a...

Prawns with fried cheese, barley shaped pasta

Put the barley shaped pasta into a small pan with salted water, bring to a boil and when tender, drain. Peal the prawns leaving...

Salmon and shrimp sheftalies

Mix all ingredients for tabbouli in a bowl and keep to one side so flavours can combine. Prepare the sheftalies: wash and soak the casing...