December 05, 2018

Experts unsurprised Marriott got hacked


When Marriott International disclosed the massive data security breach of its Starwood network on Friday, technology and cybersecurity experts were not surprised it happened.

"We're in an era where breaches that go undetected for four years should be a thing of the past, but they're not," said Brian Krebs, writer of the KrebsOnSecurity blog. "And unfortunately, it's not surprising to see this within the hotel industry. The hospitality world has been notoriously bad at implementing security to protect their own systems and the data of their guests."

Krebs cited the hotel industry's continued use of credit card and debit card swiping systems, as opposed to chip-enabled readers that encrypt payment information, as one glaring example. He also pointed out that Marriott posted its press release announcing the breach on an unencrypted web page.

"Even after nearly every single major hotel company has gotten breached over the last four or five years, hotels are still doing these very obvious things that we have solutions for," he said.

Get the full story at Travel Weekly