It turns out one of the riskiest things you can Deborah Sullavan Archivesdo for your personal data is book a hotel room. That's the conclusion of Symantec after reviewing more than 1,500 hotel websites spread across 54 different countries.
As Reuters reports, the review carried out by Symantec discovered that two out of every three hotels will leak the booking details of guests. Those details include full names, email address, postal address, mobile number, credit card details (last four digits, card type, expiration), and passport numbers. The information is accessible to third-party websites, advertisers, and analytics companies.
The obvious questions are how? and why? The personal data being leaked stems mainly from the way in which hotels send confirmation emails. They typically include a reference code, which links to all the booking information and doesn't require a login to access. A quarter of the hotel websites also aren't encrypting the link, making it much easier to intercept and access the information.
According to Symantec, that reference can be shared with over 30 different service providers, "including social networks, search engines and advertising and analytics services." From the hotel's point of view, sharing the information with the customer in this way is simple and easy to do, but it clearly overlooks the security threat being posed.
Candid Wueest, principal threat researcher at Symantec, explained, "While it's no secret that advertisers are tracking users' browsing habits, in this case, the information shared could allow these third-party services to log into a reservation, view personal details and even cancel the booking altogether."
If the ease with which personal information is being shared isn't worrying enough, the hotel responses to this review should set alarm bells ringing. Symantec contacted all of them, with the average response time by a hotel data privacy officer taking 10 days. However, 25 percent did not reply within six weeks of contact. One common response seems to be they are, "still updating their systems to be fully GDPR-compliant."
Back in November, it was discovered that the personal details of 500 million guests at Marriott International hotels had been exposed in a database hack. Symantec did not include Marriott hotels in the review, reinforcing the fact this seems to be an industry-wide problem.
Topics Cybersecurity
Shop the Shark FlexStyle for 20% off at Amazon
'The Shape of Water' review: Guillermo del Toro's merman romance
This laser
How Apple's iPhone X is using the old 'happy Mac' icon to make Face ID less creepy
5 Ways to Access a Locked Windows Account
'Game of Thrones' will shoot many endings for Season 8 because the true enemy is spoilers
So how worried should we be about Apple's Face ID?
Facebook wants you to learn about natural disasters and other crises
Sabalenka vs. Svitolina 2025 livestream: Watch Madrid Open for free
Researchers dismayed after YouTube blocks North Korea channels
Norrie vs. Diallo 2025 livestream: Watch Madrid Open for free
Latest season of 'Game of Thrones' on DVD promises never
Apple quietly released a killer update to iTunes
Facebook just released its Houseparty killer to win back the teens
Watch how an old Venus spacecraft tumbled before crashing to Earth
Google Chrome will turn off autoplay videos with sound to improve your browsing experience
'Black Mirror' predicted this iPhone X feature and it's really creepy
'Pokémon Go' developer says iPhone X barely scratches the surface for AR
U.N. confirms the ocean is screwed
New 'Rick and Morty' fan theory makes a scary amount of sense
Papa John's jackAdorable couple fall in love in 'Final Fantasy XIV' and have an inApple pulls iOS 13.2 update for HomePods after bricking devicesOf course Cate Blanchett joined an Adele performance at a drag show at Stonewall in a pussy hatThis egg inside another egg is a perfect YouTube specimenPapa John's jack'The Social Network' writer Aaron Sorkin rips Mark Zuckerberg in open letterBehold the infectious joy of this guy folding his TThis egg inside another egg is a perfect YouTube specimenDozens of companies in China have filed trademark claims on Ivanka Trump's namePonies get matching sweaters for trip to meet their relativesChelsea Clinton burns Trump on Twitter for his baffling Sweden remarkJ.K. Rowling is a proud dog mom and wants everyone to know itFacebook leaves no doubt: It's the right wing's social network nowYep, the U.S. gave a 'Make Somalia Great Again' hat to the country's president'Little Monsters': The sneaky, heartAirPods Pro and Android: Is it worth it?Ponies get matching sweaters for trip to meet their relativesWhich new streaming service should you subscribe to? None of themPapa John's jack BookTok is highlighting the best romance reads Staring Deep into Robert Ryman’s White Squares 7 skills to teach your daughter by age 13 Airship: Photos from Guyana Smart thermostat deal: Get $50 off a Honeywell Home thermostat How Do You Turn a Political Movement into a Book Cover? Michael Herr, 1940 Growing Up in the Gun Belt Who owns the rights to your face? An Interview with Jana Prikryl Tesla finally announces date for Cybertruck delivery event The Whole Rigmarole: Ben Jonson, William Drummond, and the Declaration of Independence TikTok recipe for air fryer chicken skewers is surprisingly delicious and simple Do Virgos deserve Beyoncé's 'Virgo's Groove'? Bill Berkson, 1939–2016 What is 'Buy Now, Pay Later' and who does it hurt? Small Talk Is America’s Greatest, Strangest Art Form Luc Sante on the Appeal of Junk Shops Hosting a National Blurb Contest Tesla starts using cabin camera to determine if you're too sleepy to drive
2.2595s , 8200.78125 kb
Copyright © 2025 Powered by 【Deborah Sullavan Archives】,Pursuit Information Network