Jump to content
Login with your Gmail HERE and start posting in seconds! ×

Luxury hotel chain in Thailand reports data breach

webfact

By webfact
in Thailand News

 Share

Recommended Posts

  • Replies 65
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Popular Posts

HaoleBoy
HaoleBoy

These hotels keep their hardcopy of your passport (or DL) when registering too.   Your phone # is written on this copy as well. I asked to get my hardcopy back at a BKK hotel when leaving to tear

ourdon
ourdon

Ohh Gawd,   I do hope the government doesn't take too much notice.  If they realize that there is an easier way to separate a foreign person from his/her money we are in the deep doodoo.  Ne

webfact
webfact

File photo for reference only   Cyberattackers claimed to have stolen the passport details and other personal information from visitors who stayed at Centara Hotels & Resorts.  

Posted Images

superal Platinum Member

superal

Posted
Posted
On 10/29/2021 at 10:42 AM, JayClay said:

What hotels are you going to that hold your passport for a day?

 

I have never experienced this before.

            Not too recently I have to say but about 4 or 5 years ago around xmas time the Lek Hotel in Pattaya , a little bit later the Centara hotel in Udon Thani and finally the Pullman in Khon Kaen . However within the last 2 years when staying in Korat and a small hotel in Khon Kaen , my Thai drivers licence was accepted , copied and handed back to me 

Link to comment
Share on other sites
lkn Silver Member

lkn

Posted
Posted

Guys, these comments about Thai companies not taking IT security serious, not willing to pay extra for it, or not knowing how to encrypt a database is just ridiculous.

 

Have a look at this rather long list of companies that have suffered data breaches.

 

This is clearly an industry wide problem! And securing a database is not hard, if only one person needs to access it, but a chain with 70 hotels probably need to have hundreds of people able to access customer records, for example if you call their customer support and want to make changes to your booking, etc.

 

From the article it sounds like the servers were compromised, so this might not even be a phishing attack or weak password thing, but possible a vulnerability in some server software. Exploits are found all the time, and even an up-to-date system can be vulnerable to exploits unknown to the vendor.

Link to comment
Share on other sites
jacko45k Star Member

jacko45k

Posted
Posted
19 hours ago, superal said:

            Not too recently I have to say but about 4 or 5 years ago around xmas time the Lek Hotel in Pattaya , a little bit later the Centara hotel in Udon Thani and finally the Pullman in Khon Kaen . However within the last 2 years when staying in Korat and a small hotel in Khon Kaen , my Thai drivers licence was accepted , copied and handed back to me 

I suspect it is because you could not provide a credit card at check-in, or they were too lazy to go make a copy there and then. It has not been my experience that they need to hold the passport.

Link to comment
Share on other sites
ukrules Star Member

ukrules

Posted
Posted
23 hours ago, lkn said:

From the article it sounds like the servers were compromised

Of course they were, so how would you easily encrypt the database in such a way that they (hacker) can only gain access to encrypted data with no keys on the server itself as that would of course defeat the entire purpose of the encryption wouldn't it?

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.










×
×
  • Create New...