Quantcast
More

    ‘Staff backlash’ over Eton’s ‘aggressively woke’ cultural revolution

    'Staff backlash' over Eton headmaster 'Trendy Hendy's' 'aggressively woke' cultural revolution to overhaul 580-year-old public school - as 1,000 pupils sign petition to reinstate...

    Kentucky Mayor charged with DUI after falling asleep in a drive-thru and crashing into pole

    Kentucky Mayor is charged with DUI after falling asleep in a White Castle drive-thru line and crashing into a utility pole Shively mayor Beverly Chester-Burton...

    Trump Delivers 46-Minute Speech on the ‘Rigged’ Election From White House

    @media (pointer: coarse) { .nytslm_outerContainer { overflow-x: scroll; -webkit-overflow-scrolling: touch; ...

    Gwen Stefani, Kelly Clarkson, and more appear during Christmas In Rockefeller Center special  

    Gwen Stefani graces the stage in TWO jaw-dropping outfits and Kelly Clarkson belts out an original holiday track during NBC's 88th Annual Christmas In...

    Popular travel booking sites are hit by huge data breach stealing millions of credit card numbers

    Popular travel booking sites are hit by huge data breach stealing millions of guests’ credit card numbers and personal details – could hackers have your info?

    • Major booking platforms use cloud-based reservation service Prestige Software
    • The company stored seven years’ worth of credit card data from hotel guests
    • According to internet security group, the company did not protect user data 
    • Daily Mail Australia has contacted Prestige Software for comment 

    Australians holidaymaker could have their credit card numbers and personal details stolen in a massive data breach of booking websites.

    Expedia, Agoda, Booking.com, Hotels.com and several other companies that all use the Cloud Hospitality backend, exposing million to potential fraud. 

    Spanish company Prestige Software, which owns the software that automates and synchronises hotel availabilities, was hit by suspected hackers.

    A mass data breach has hit popular travel booking sites, potentially exposing millions of Australians to fraud (stock image) 

    According to Website Planet, an internet security group that exposes large-scale data violations, the software company stored up to seven years’ worth of credit card data from hotel guests and travel agents ‘without any protection in place’. 

    Expedia said it was aware of the breach, but that it did not impact its systems directly.

    Booking sites used by Australians impacted by the breach 

    Agoda 

    Booking.com

    Expedia

    Hotels.com 

    Sabre

    Source: Website Planet 

    Advertisement

    ‘The security of our customers is a key priority for us and something we take very seriously,’ it said.

    ‘We continue to work with Cloud Hospitality to assess the impact it may have had on any of our customers.’

    Daily Mail Australia has contacted Prestige Software, Agoda, Booking.com, Hotels.com for comment.

    Customers’ names, addresses, phone numbers, identification documents, credit card information and private booking details were reportedly left exposed.

    ‘With detailed information about a person’s hotel reservation, a hacker with access to the exposed files could take these details, contact the hotel, and change the dates and names on the reservation,’ Website Planet said.

    ‘They could then take over someone’s holiday without paying, or pose as a travel agent and sell the reservations to unsuspecting customers. They could, of course, do this more than once.’

    It also revealed that hackers could use identifying information to find embarrassing material about hotel guests and use it for blackmail.

    The breach was discovered due to a flaw in a popular form of cloud-based storage, known as the Amazon Web Services (AWS) S3 bucket – which meant that more than 10 million individual files were left wide open. 

    Each log contained sensitive and identifiable information from customers who used the online booking systems to make travel plans. 

    Pictured: The breach in Amazon Web Services S3 bucket showing identifiable information from customers who used the online booking systems to make travel plans

    Pictured: The breach in Amazon Web Services S3 bucket showing identifiable information from customers who used the online booking systems to make travel plans

    Website Planet contacted AWS and the S3 bucket was secured the following day, but the group could not confirm whether any data was stolen before the breach was discovered.

    It warned all customers who used online booking platforms to contact each provider and ask about data security.

    Prestige Software may lose the ability to accept credit card payments, making it almost impossible for the company to operate. 

    Daily Mail Australia is not suggesting Expedia, Agoda, Booking.com or Hotels.com are responsible for data violations within systems operated by Prestige Software.

    LEAVE A REPLY

    Please enter your comment!
    Please enter your name here

    Latest Posts

    Trump Lost the 2020 Election. He Has Raised $207.5 Million Since.

    @media (pointer: coarse) { .nytslm_outerContainer { overflow-x: scroll; -webkit-overflow-scrolling: touch; ...

    Harris Adds to a Diverse Staff Where a Majority, Like Their Boss, Are Women of Color

    @media (pointer: coarse) { .nytslm_outerContainer { overflow-x: scroll; -webkit-overflow-scrolling: touch; ...

    Former Neighbours star Dan Paris reveals his surprising new career

    Remember him? Former Neighbours star Dan Paris reveals his surprising new career - and you'll NEVER guess what he looks like now By Chloe-lee Longhetti...

    Returning Arsenal fans urge Mikel Arteta to bring midfield outcast Mesut Ozil back into squad

    'Bring back Mesut': Arsenal fan calls on boss Mikel Arteta to bring midfield outcast Ozil back into the fold next month after 2,000 supporters...