Hotel front desks are now a hotbed for hackers

It seems that any possible way cybercriminals can exploit the hospitality industry, they will.

Hotels, restaurant chains, and related tourism services have been subject to a range of techniques when it comes to cybercrime; the compromise of Point-of-Sale (PoS) terminals to harvest guest data, phishing emails sent to staff which are designed to give attackers access to internal systems, and Man-in-The-Middle (MiTM) attacks through hotel public W-Fi hotspots being only some of the potential attack vectors.

The data that the hospitality industry accepts, processes, and holds is valuable. Guest Personally Identifiable Information (PII) and financial information can be used in spear-phishing schemes, sold on in bulk, or potentially used to create clone cards when strong encryption is not in place to protect payment data.

To add to a growing list of threat actors that specialize in attacks against hotels and hospitality organizations, such as DarkHotel, on Thursday, Kaspersky published research on a targeted campaign called RevengeHotels.

Safety & Security Travel Technology