Friday, July 20, 2018
  • Stuart McClure: On Security, Suffering, and Wild Dogs
  • Q&A Series with RSAC APJ Ambassador Jonathan Trull
  • Skype Classic to End Soon – Users Forced to Update to Skype 8
  • The danger of third parties: ads, pipelines, and plugins
  • Remove UAEtechnician.com Support Scam

Security Boulevard

The home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
  • Community
    • Security Bloggers Network
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chats
  • CISO Conversations
  • Library

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
Data Security SBN News Security Bloggers Network Threats & Breaches 

Home » Cybersecurity » Data Security » Japanese Hotel Chain Notifies 125K Guests of Software Provider Breach

Japanese Hotel Chain Notifies 125K Guests of Software Provider Breach

by David Bisson on June 27, 2018

A Japanese hotel chain company notified approximately 125,000 guests about a data breach that affected one of its software providers.

On 26 June, Prince Hotels & Resorts published a statement on its website explaining that its reservations system in English, Simplified Chinese, Traditional Chinese and Korean was affected by an instance of unauthorized access.

The hotel chain company said the incident could have exposed the personal information including names, addresses, email addresses and booking details of 58,003 guests who stayed at 43 of its hotels between May 2017 and June 2018. It disclosed the event might have also affected the payment data of 66,960 guests who made reservations and confirmed reservation through its system for international guests at 39 of its locations before August 2017.

As of this writing, Prince Hotels & Resorts did not find evidence suggesting someone had misused these affected guests’ information. It still took the steps to notify the Personal Information Protection Commission, a Japanese government entity which is responsible for protecting people’s personal information. It also reassured customers that it’s committed to keeping them updated about the incident. As quoted in its notice:

We are working diligently to address this issue and our priority will continue to be doing what is right for our Guests. We are committed to sharing additional information on this ongoing investigation with our Guests as we learn more.

Prince Hotels & Resorts said in its statement that the instance of unauthorized access took place at FastBooking, a digital services provider for 4,000 hotels worldwide. FastBooking detected an intrusion into its systems on 19 June, reported Bleeping Computer. That incident is thought to have compromised guests’ personal information and/or payment details at 380 Japanese hotels alone, with additional hotels worldwide likely affected.

FastBooking responded by contacting each affected hotel, including Prince Hotels (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by David Bisson. Read the original post at: https://www.tripwire.com/state-of-security/security-data-protection/japanese-hotel-chain-notifies-125k-guests-of-software-provider-breach/

June 27, 2018June 27, 2018 David Bisson 0 Comments Breach, data, Hotel, IT Security and Data Protection, Latest Security News
  • ← Remove ThePresidentSays Redirect Removal
  • WPA3 Takes Wi-fi Security to the Next Level, Following the Krack Attack →
Featured Blog

1 day ago

Why Drupalgeddon 2.0 May Still Be A Threat To Your Website

3 days ago

3 Essential Steps for Your Vulnerability Remediation Process

1 week ago

Best Practices for Open Source Governance

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

VPNFilter Attack Hits Chlorine Plant in Ukraine
Cybersecurity Job Seekers: Go West (or South)
We Have the Silver Bullet for BS Detection – CISO/Security Vendor Relationship Podcast
Cyberespionage Campaign in Ukraine Uses Free and Custom RATs
It’s Time to Rethink Privileged Account Management
Pentester Academy Command Injection ISO: SugarCRM 6.3.1 Exploitation
Monday, July 16: Dtex, Insider Threat News: Privileged User Dents Apple Self-Driving Car Program; DOJ Says Russia Hacked Clinton Campaign, Issues Indictments Against Spies
A primer: How to stay safe on Amazon’s Prime Day Sale
Survey Finds Breach Discovery Takes an Average 197 Days
5 ways to find and fix open source vulnerabilities

Upcoming Webinars

Tue 24

DevOps Security: Build-Time Identification of Security Issues — A case study with Jenkins, Docker, and AWS

July 24 @ 11:00 am - 12:00 pm
Thu 26

Draft and Develop: A Solution to the Cyber Security Skills Shortage

July 26 @ 11:00 am - 12:00 pm
Tue 31

Mastering Machine Learning for Security Professionals: A Discussion

July 31 @ 1:00 pm - 2:00 pm

More Webinars

Download Free eBook

The Main Application Security Technologies to Adopt by 2018

CISO Conversations

CISO/Security Vendor Relationship Podcast

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Key Traits Employers Seek from Information Security Professionals
Careers Cybersecurity Industry Spotlight Security Boulevard (Original) 

Key Traits Employers Seek from Information Security Professionals

July 20, 2018 Jane Thomson | 10 hours ago 0
It’s Time to Rethink Privileged Account Management
Cybersecurity Identity & Access Industry Spotlight Security Boulevard (Original) 

It’s Time to Rethink Privileged Account Management

July 18, 2018 Mark Klinchin | 2 days ago 0
Control, Defend and Extend Container Security
Cybersecurity DevOps Industry Spotlight Security Boulevard (Original) 

Control, Defend and Extend Container Security

July 10, 2018 Kirsten Newcomer | Jul 10 0

Top Stories

Barracuda Networks Extends WAF Reach to Google Cloud Platform
Cloud Security Cybersecurity Featured News Security Boulevard (Original) Spotlight 

Barracuda Networks Extends WAF Reach to Google Cloud Platform

July 20, 2018 Michael Vizard | 3 hours ago 0
Cisco’s Latest Patches Address Critical Flaws, Hardcoded Password
Featured Identity & Access Network Security News Security Boulevard (Original) Spotlight Vulnerabilities 

Cisco’s Latest Patches Address Critical Flaws, Hardcoded Password

July 20, 2018 Lucian Constantin | 3 hours ago 0
McAfee to Advance Cybersecurity AI via the Cloud
Analytics & Intelligence Cybersecurity Featured News Security Boulevard (Original) Spotlight 

McAfee to Advance Cybersecurity AI via the Cloud

July 19, 2018 Michael Vizard | Yesterday 0

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2018 Mediaops Inc. All rights reserved.
Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.