12 December 2017
Stephen Wilson

Stephen Wilson in Lockstep

Stephen Wilson - Lockstep Group

34Posts 133,454Views 174Comments
A post relating to this item from Finextra:

Card data exposed as Radisson Hotels becomes latest breach victim

19 August 2009  |  9068 views  |  1
2717.jpg
In the latest data breach to hit the headlines, Radisson Hotels & Resorts says its computer systems have been illegally accessed, putting customer card details at risk.

Hotel databases and identity thieves

19 August 2009  |  3400 views  |  0

Hotel databases are a fantastic target for identity thieves.  Hotels don't just hold credit card numbers and billing addresses (which are held for weeks in advance of a stay and for weeks afterwards to secure incidentals), but for many customers the hotel also has their home address, driver licence number, airline memberships, and ... drum roll ... passport number, as frequently collected by hotels in Asia.  It's a complete cornucopia for criminals.

And the most dangerous, most difficult to control threat vector in the hotel industry won't be war-driving or SQL injection attacks as used by the Soupnazi hacker Albert Gonzales

It will be the inside job. 

How many thousand itinerant hotel workers in every corner of the world will have the opportunity to sneek into an admin office after hours, break into the network, and find their way into the central databases? 

Surely counter terrorism agencies are working on this problem?  With access to a global hotel chain's booking system, terrorists could work out when the and where the next gathering of targets is going to happen, and they could track the travel habits and plans of all sorts of named individuals.

Stephen Wilson, Lockstep.

TagsSecurity

Comments: (0)

Comment on this story (membership required)

Latest posts from Stephen

Now is not the time to go soft

03 August 2012  |  3958 views  |  2 comments | recomends Recommends 0 TagsSecurityPayments

How much worse can CNP fraud get?

17 July 2012  |  3152 views  |  1 comments | recomends Recommends 0 TagsSecurityPayments

Credit card numbers are like nitroglycerine

13 January 2012  |  4650 views  |  0 comments | recomends Recommends 0 TagsSecurityPayments

Banks really know their customers

13 December 2011  |  3251 views  |  1 comments | recomends Recommends 1

Taking full advantage of Chip

02 June 2011  |  4433 views  |  6 comments | recomends Recommends 0

Stephen's profile

job title Managing Director
location Sydney
member since 2008
Summary profile See full profile »
I specialise in digital identity, privacy, smart technologies and fraud prevention. I run the Lockstep Group, which researches and develops innovative solutions to Card Not Present fraud and identity...

Stephen's expertise

Member since 2008
34 posts174 comments

Who's commenting on Stephen's posts