Morning Tick
  • Latest News
    • Bitcoin
    • Ethereum
    • Ripple and XRP
    • Fintech
    • Altcoins
  • Market Analysis
  • Resources
  • Contact
    • About Us
    • Press Toolkit
Facebook Twitter Instagram
Morning Tick
  • Latest News
    • Bitcoin
    • Ethereum
    • Ripple and XRP
    • Fintech
    • Altcoins
  • Market Analysis
  • Resources
  • Contact
    • About Us
    • Press Toolkit
Facebook Twitter Instagram
Morning Tick
Cyberattack

Travel Booking websites face massive data breach, payments credentials exposed

Manas PimpalkhareBy Manas PimpalkhareUpdated:November 11, 2020 on November 11, 2020
data breach
Share
Reddit Facebook Twitter LinkedIn Pinterest WhatsApp Email

Prestige Software, a company based in Spain, experienced a large-scale data leak in early  November. The company provides software solutions to numerous travel websites.

Many prominent hotel booking websites use Prestige’s Cloud Hospitality tool. Therefore, their data is available in the leaky AWS S3 storage bucket. Among the affected websites are Expedia, Amadeus, Booking.com, Hotels.com, Sabres, and many more

According to the research conducted by Website Planet, the data of millions of hotel guests worldwide was exposed. Actually, more than 24GB of customer data stored in the form of a Misconfigured AWS S3 bucket was discovered. The data goes back to 2013 and contains credit card credentials of hundreds of thousands of people. 

Specifically, the leaked data included customers’ full names, email addresses, national ID numbers, phone numbers, credit card number, cardholder’s name, CVV, expiration date, along with payment and booking details. As a result, Prestige was able to store credit card data, payments credentials, and booking details on its database. Unfortunately, the database did not have cybersecurity protection.

According to the data garnered by Website Planet, millions of individuals could be affected. The leaked data is huge, making it is difficult to gauge the number of people impacted. 

Due to the leakage of credit card details, Prestige Software has breached the Payment Card Industry Data Security Standard, known as PCI DSS. Regrettably, this can cause the company to lose the mandate to accept and process credit card payments. Worse, since Prestige is based in the EU, is it answerable to the trade bloc’s stringent GDPR guidelines. 

Website Planet reported that the stolen data can be used in credit card fraud/identity theft, email phishing scams, malware attacks. It can also be used to steal someone’s hotel one’s hotel reservation. 

Cyberattack Data Privacy Security
Disclaimer
Read More Read Less
The information provided on this website shouldn’t be considered as investment, tax, legal, or trading advice. Morning Tick is not an investment advisory platform, nor do we intend to be. The publication, its’s management team, or authored-by-line doesn’t seem liable for your personal financial losses, which may be due to your panic decisions based on the content we published. We strongly recommend considering our stories as just a piece of information, unlike advice, recommendations, or requests. Some of the contents may get outdated, updated, or inaccurate despite our profound editorial policies. We urge readers to do their due diligence before making any investments decision with ongoing IDOs, ICOs, IEOs, or any other kind of financial offerings. Few outbound links may be commissioned or affiliated, which helps us grow financially and maintain healthy editorial norms. For more information, visit disclaimer page.
Share. Facebook Twitter Pinterest LinkedIn Email Reddit WhatsApp
Previous ArticleCrypto Exchange tokenBetter under investigation from Chinese police
Next Article Crypto analyst Gary Gensler to lead Biden’s financial policy transition team
Manas Pimpalkhare
  • Twitter

Aspiring Tech Journalist, Lawyer-to-be, has a keen interest in cybercrime and disruptive tech like AI, 5G, and crypto.

Recommended Posts

Crypto Firm hacked for $1.4M reimburses users for stolen BTC and ETH

January 29, 2021

Bitcoiner alerts ‘overconfident HODLers’ after losing 2.6 BTC

January 11, 2021

The 10 Biggest Data Breaches that grabbed attention in 2020

December 24, 2020

Adware is the new Malware that everyone needs to know

November 25, 2020
Add A Comment

Comments are closed.

Latest

Introducing Lucky Mystery Box, Crypto lottery based on TRON with a prize pool of 1M USDT

1 day ago

GlobalDots joins forces with Coralogix to save companies 40-70% on full-stack observability costs, launching a debut CDN log management solution

3 weeks ago

KX.finance announces upcoming DeFi/DEX aggregator launch on APTOS/SUI blockchain

3 months ago

HyperBC Group unveils Zero interest Crypto Credit Card HyperCard, obtains Lithuanian Financial License

3 months ago

Unplugged launches its mobile App Suite to help consumers reclaim their privacy

3 months ago
Morning Tick
Facebook Twitter Instagram Pinterest RSS
  • About Us
  • Press Toolkit
  • Disclaimer
  • Contact Us
  • Privacy Policy
  • Sitemap
© 2022 Morning Tick. Disclaimer: The information provided on this website shouldn't be considered as investment, tax, legal, or trading advice.

Type above and press Enter to search. Press Esc to cancel.