Hotel industry data breach: What could be the impact on business travel?

  • security

    Hotel industry data breach: What could be the impact on business travel?

If your employees stayed at affected hotels, their data may be at risk.

Data breach announcements have become a worryingly common occurrence. Nearly every industry has experienced data breaches, and the effects are long-lasting and far-reaching. The back-end connections between today's companies run deep. When one widely used service is compromised, the data loss can extend around the world. One of the latest data breach issues erupted in the hotel sector, raising important questions about whose data has been exposed.

If you oversee employees who stay in hotels on business trips, it's time to consider the potential impact of recent data losses on the safety of their personally identifiable information. And if indeed your team has been compromised, it may be time to consider stepping up personal ID protection for employees.

FastBooking Beset by Breach

According to Bleeping Computer, FastBooking, a provider of hotel software used in 100 countries and at more than 4,000 hotels, recently suffered a serious data breach. The intruder stole guests' names, check-in and -out times, addresses and more. In some cases, payment card information was also taken.

The exact nature of the attack was relatively simple. Attackers spotted a vulnerability in an application running on FastBooking's servers and installed a malware tool that would continually steal data from the software provider. The breach took place on June 14, and the loophole was closed on June 19, the same day the breach was discovered.

This kind of breach isn't the first of its kind. A similar attack struck a human resources software company called PageUp earlier in June.

When such a breach happens, the businesses that dealt directly with affected individuals - in this case, the hotels - will typically send out data breach notifications. FastBooking attempted to expedite this process by sending template emails to its partner companies.

Worldwide Impact Being Felt

According to Agence France-Presse, Prince Hotel, a Japanese hotel chain and victim in the breach, reported that nearly 125,000 pieces of data were leaked from a FastBooking server for its English, Chinese and Korean websites. The company released a statement saying the records mined for names, addresses and phone numbers came from May and June 2017. Credit card numbers from guests staying before August 2017 were also taken.

The hotel operator closed down its website while it tried to get its security back on track and issued an apology. In the end, such a breach affects all parties involved. Both FastBooking and its customer organizations are susceptible to financial and reputation damage, and the people with compromised information may be at risk of identity theft.

What's the Status of Your Team?

If you book hotel rooms for your company, you may be wondering whether this breach will have a major impact on your employees or business. When data is compromised, the possibility of such damage is always there. The credit card numbers stolen could belong to corporate accounts, which could cause headaches for your accounting department if that data is misused. Furthermore, if the data stolen was personal, employees may blame the company for putting them in an environment with elevated identity theft risk.

Considering the prevalence of data breaches today, a proactive stance protection may be the best approach. Choosing a data breach response partner like Identity Guard Business Solutions can also help protect your brand. If you ever experience a breach we can help you manage your response to minimize losses, restore customer confidence, and help protect against future damage.

Resource Center

Resource Center

2018 Cybersecurity Trends

Early 2018 has brought changes in the types of attacks and security used by hackers. Stay up-to-date on current security trends to help stay protected.

Join the Conversation