Hotels urged to tighten business center PC security
The US Secret Service and the Homeland Security’s National Cybersecurity and Communications Integration Center (NCCIC) agency are urging the hospitality industry to improve security of hotel business center PCs following the arrest of a group of ‘keyloggers.’
NCIC officials said a Dallas based gang used stolen credit cards to check-in as guests of hotels and then used the properties’ business centers to insert keylogging malware on public PCs.
"The keylogger malware captured the keys struck by other hotel guests that used the business center computers, subsequently sending the information via email to the malicious actors’ email accounts," the agency’s advisory said.
The suspects obtained personal and financial information from other guests including log in details for bank accounts, personal webmail accounts, and other sensitive data.
The NCIC acknowledged it was not an elaborate, high-tech scheme.
"The attacks were not sophisticated, requiring little technical skill, but were able to utilize a low-cost, high impact strategy to access a physical system to steal sensitive data, the NCIC report said.
The NCCIC recommends hospitality companies limit guest accounts to non-administrator accounts, in order to block the downloading of malware, however a leading cyber security expert believes the only way to combat information theft is for hotel guests to never expose personal data through a public computer.
"The truth is, if a skilled attacker has physical access to a system, it’s more or less game over for the security of that computer, and the trouble is that there is no easy way for the average guest to know for sure," said Brian Krebs of krebsonsecurity.com.
"I routinely advise people not to use public computers for anything more than browsing the web."
TravelMole Editorial Team
Editor for TravelMole North America and Asia pacific regions. Ray is a highly experienced (15+ years) skilled journalist and editor predominantly in travel, hospitality and lifestyle working with a huge number of major market-leading brands. He has also cover in-depth news, interviews and features in general business, finance, tech and geopolitical issues for a select few major news outlets and publishers.
EU airports bring back 100ml liquid rule
British Airways passengers endure 11-hour 'flight to nowhere'
CLIA: Anti-cruise demos could cause itinerary changes in Europe
Co-pilot faints, easyJet flight issues ‘red alert’
Gatwick braces for strike