Group items tagged

This article deals with the theft that happens on a daily basis in the hospitality field. It happens when credit cards are used to pay for something, like a reservation, and thieves want the information, so they can use your credit card number for whatever intentions they may have. As the article states, "our data is under attack". I can relate to those people that have had credit card numbers stolen, because it has happened to my husband and me, and it is a horrible feeling trying to get your life back on track and recover your money.  I think it would be a great idea, with some research, to get the point to point encryption technology in a field where credit cards are used so often, not only to cover the business (hotel), but also to protect the guest, so they feel at easy when they travel on vacation or business.  The overall point of this technology is to encrypt the information as close to the point of entry, i.e. the swiping of the credit card, as possible. This would in turn "significantly reduce a merchant's card data environment", as the program would encrypt the information so that hackers cannot access the customer's information. As I mentioned earlier, questions should be asked before buying this technology, as there is always something new on the market that may be better. Credit cards are not always swiped, but can also be manually placed in the system, so you want to make sure, that both transactions are protected. Overall, the establishment should always be concerned about the customer and their safety, whether physical or mental and always be prepared for the worse.

Great article! Personally after being a victim of credit card fraud, I'm very apprehensive of where I shop, who handles my card and how long it takes them to return it. I recently cancelled a large purchased after the cashier insisted on rubbing my card number on the reciept after the transactions had be approved. In my mind, I was thinking "If I let you do that, then I've open the door for anyone to charge thousand of dollars. I don't think so." As a manager, who hands credit card numbers for manual input, I'm very cautious of them and want to insure that they don't get into the wrong hand. Aftern each transactions is approved, that number is shredded and the credit card machine is batched out. Companies don't realize how important it is to PCI compliant. The risk in exposing sensitive information of our clients and customers can cost thousand of dolllars in fines and fee, in addition to the lost of that customer/client.

Marilyn, Great Article...as a Front Desk Manager, it is my responsibility to randomly check our computers to ensure employees are not placing USB driver to collect data from our system. Our company has taking this a step further by putting metal locked case around the PC to avoid possible fraudulent activity. If we have to open a PC, we must log it to show proof why a PC became unlock. Companies should adopt similar procedures to protect the consumers/guests. Nelson

In this article, the author discusses many different ways to help a business reduce their risk for cyber attacks. The article touches on a statistic about cybersecurity, stating "During the first half of 2021 alone, over 118 million people were impacted by data breaches". There is quick talk about how the policies that a business implements is the make or break of the cybersecurity for your business. For example, one of the main tips to reduce cyber attacks in your business is to make sure your data is encrypted. "Saving your data in normal-text format only makes it easy for hackers to access. Data encryption, on the other hand, limits data access to parties that have the encryption key". Another tip to prevent cyberattacks highlighted in the article is to keep all your employees educated and informed about malicious emails. Conducting regular employee trainings about the dangers of these types of emails could save your business. These types of emails are known to send links that could hack the system, as well as pretend to be higher-up employees in the company asking for personal data or financial information. The article is extremely educational to every business, as well as just the everyday consumer. Keeping your confidential information as confidential as physically possible is very much doable, as long as you make sure you follow these 10 simple tips.

One of the major issue of cloud computing is encryption, which is the process of transforming information to make it unreadable to others users.  Encryption arises as a problem in cloud computing because not all the companies that are providing the service of cloud computing but not the encryption services which is very important for the safety on the data of the customers. When choosing to use cloud computing, it is important to find out al the services that the cloud offers because without the encryption services, the security of the data also decreased said Subra Kumaraswamy a senior security manager at Sun Microsystems INC.   Another issue when it comes to cloud computing is authorization because not all providers can control who can access their data, which make the data vulnerable to hackers.  In my opinion before someone decide to use the cloud computing it is important that the customers make researchers about the feature  and services that the cloud is using to make sure that is the best option for the company 

This article describes the importance of credit card security in the hospitality industry. End-to-end encryption (data field encryption) protects credit card consumers' information from hackers. In 2008, 50 percent of card hacks were targeted at hotels and restaurants, therefore, the industry is cracking down on the security of consumer data. Basically, the data encryption acts as a layer of extra security by erasing any consumer data that is left in transist after the transaction is made. The implementation of it is very important,there are still industry standards being put into place so that it can work efficiently. Visa is one of the forerunners that developed and published information on the best practices for the encryption.

Data field encryption can be the solution to protect the credit card information of the guests. Nowadays there are still problems with cardholder data in many establishments such as bars, restaurants, shopping stores, and hotels.

I think its one of the best security tools that the industry could adopt. It is such a common way for hackers to gain information and money, that it is often over looked. I for one have never given it much thought when I give my credit cards at hotels, but it will definitively be in the back of my mind from now on.

This article describes the vulnerabilities in the security systems of the hotel Industry. The POS system was recognized as one of the most vulnerable areas that are more targeted by hackers. This is due to the multiple stations where the POS systems are located on the premises of the hotel. Likewise having POS systems independent of the hotels security system left the system open to hackers. Two options to defending the cyber-defense, are digital walls and employee training. Digital walls works by keeping hackers from accessing the systems. Although even with a strong firewall it is recommended to implement point-to-point encryption (P2PE), this encrypts payment information of guest. the other is tokenization. This uses alphanumeric pseudonym to protect data stored for long periods of time. Another way to prevent cyberattacks is employee training, encourage the use of strong passwords an dhow to detect fraud and phishing attacks.

This article is talking about having POS with solid state drives. They do not have moving parts so they are not as delicate as the HHD hardware. Retailers not only want to be efficient in how they run their business by having a reliable POS system but they also want to boost customer service by having a system that works faster. As technology moves at a faster pace, customers are also looking for quicker service. The SSD hardware is self-encrypting, protecting customer data, it boots up faster, energy efficient using less power from the POS and are now widely accessible.

This is a great article that looks at the positives of the SSD hardware. I think that the main positives to our industry would be, as you noted, the encryption of consumer data, and the speed of the transactions. Customers are very aware that their information can be hacked if the POS doesn't provide an extra layer of protection and this hardware looks to give customers a sense of security. As for speed of the transaction, the data is absolutely accurate regarding whether a person will wait for something to process, or move on to another option. One example is the unattended POS system we spoke of earlier speeding up transactions at restaurants and hotels, whereas having this option in your POS wil just increase efficiency and speed. Thanks for the article!

Hotels have to comply with Payment Card Industry Data Security Standards, which are constantly updated since technology is developing. Also, 'the hotel industry has unique vulnerabilities to credit card theft', since the cards should be available over the long period of time, and to different 3rd parties as well. The new technology will encrypt credit card information at the point-of-swipe, and the number never gets to any other place in the hotel or other business. The other issue is payments on mobile devices. Where it is advised to encrypt information prior to using the device, and avoid "bring you own device policy'.

This article introduces the Secure Payments Framework in Hotel Technology Next Generation (HTNG) Conference. The Framework applies mobile payment and cloud computing technology to reduce the cost and complexity of satisfying the Payment Card Industry Data Security Standards. The credit card security is a big challenge for all hotels, especially for the small hotels, lacking expertise and budget to protect customers' card information. There are many advantages of the new card framework. Firstly, the new Framework can encrypt the credit card information at the point-of-swipe. In this way, the card number can't be stolen by other systems. Secondly, it is scalable for different sizes of hotel. Thirdly, new guidance is made for accepting payments on mobile devices. Before processing payment, the merchant need encrypt cardholder, to make sure more security. What is more, new policy on cloud computing. The cloud service provider and its clients are both responsible for the security of cloud data. The policy also need merchants to evaluate competing cloud services and carefully pay procedures.

This article refers to the Residence Inn Panama City implementing VingCard RFID locks in their suites and staff only areas. This technology helps improve the hotel and makes it easier to implement future technologies like apps that can be used as the room key. With Classic RFID, the property's staff-only locations can likewise benefit from the latest in encryption protocols to ensure that only those with authorization can gain access. This form of IT helps make this property more accessibly and up to date with technology.

This article goes into how secure is data that is stored in the cloud. There are three different types of cloud storage. one is public, two is private and three is hybrid. The article states that most companies go with hybrid because of its versatility. cloud storage does have built in security that includes intrusion detection, internal firewalls and file encryption. the article does list that there is security risk that come with cloud storage. week passwords are one of the main concerns when it comes to cloud security. Cloud companies do what's called breach drills to see if there are any weakness in the security and if there are how do they handle the situation if the system is compromised. this article does list the pros and cons of cloud services but in the end, it shows that the writer for this article is biased towards the use of cloud services.

Breach drills sound like a great idea! It would be helpful in continually maximizing security efforts and determining weak points in the system, especially with technology advances and computer viruses becoming stronger.

Following a robbery at a Houston hotel in which thieves exploited security flaws in Onity locks first revealed at the Black Hat conference in July, Hotel Management spoke with Todd Seiders, director of risk management at Petra Risk Solutions and former director of loss prevention at Marriott, for tips on how hoteliers can keep their rooms secure. An NFC-compatible lock, such as this Signature RFID by VingCard lock, can streamline the check-in process.

Some of the major concern hotel such as Houston hotel are facing is robbery. A lot of the older locks in the hotel are so old that it may be easy to rob precious items from the guest rooms. NFC has a new lock where the newer lock does not have an encryption code, instead the guest will get a new code from the front desk. The new lock ensure that hackers can not easily hack into a guest rooms. In addition, the new NFC-compatible locks help guests skip the check in process at the front desk and instead use their mobile phone to open their guest room doors and check themselves into the hotel.

The Article attached to this link reports commun issues found in hotel internet networks. The author mentions a study conducted with 38 hotels. It resulted that 33 out of the 38 hotels had flaws in their network configuration and allowed the researcher to access unauthorized information via the internet. We all understand that reliable internet connectivity is a priority for guests and business travelers; however, security is a concern that can't be neglected. Another reason to be concerned is that so many softwares and applications are stored via internet. Adding a password is a simple measure that every business should consider. Network issues cold not only hinder guests but the hotel as well.

According to the research by Cornell University, most US hotels are vulnerable to hackers. There are two main reasons contribute to the issue. One is the flaws in many hotels' network topology, making it possible for customers to lose their privacy. The other is careless employees provide access information to help hackers' breach. Ogle thought that WPA encryption, VPN and training employees are good ways to solve the problems. I think that if the computer networks of hotel are weak, the guests' password, email message or other private information will not be protected, and they will even suffer loss. So it is important for a hotel to use different measures as Ogle recommended to ensure the safety of the computer network.

this article is talking about the problem on the hotel network security. a author from the Cornell university said he tested wireless network at 38 hotels at the same time. he found that most hotels were easy to break into. moreover, as long as you use the Linux distribution BackTrack and a high-power wireless card and high-gain omnidirectional antenna, you can break into the hotel guest network and then get the password, email message and the website people are viewing. importantly, this procedure just cost 100$. this is full of loopholes. hotel manager should pay more attention on this problem. at the end of the article, the author recommend a security app called Wi-Fi Protected Access encryption. this app require the guest to enter the password if the guest wants to surf the internet.also, he recommend connecting to the internet using a Virtual Private Network (VPN), having updated anti-virus and firewall software and making sure each secured website starts with "https://" rather than "http://".

This article discusses the security issues with room keys. These hotel locks will not open with cards that are read as duplicates or duplicatable. The locking mechanism has been specifically designed to alert the front desk and secuirty departments in the event these locks are tampered with. I'm sure at one point or another we have all experimented with our room key and tried to open other doors. A system like this will prevent activity like that.

This article talk about the issue that hotel are having with their security system lock for guest room. These cards are easy to duplicate. The new system will alert front desk or security if the lock has been tampered with. Other alarms include detecting that a door is forced open 'mule tool' instruction when a door is open from the inside handle without an occupant in the room.

This article discusses the current state of hotel lock safety. Monitoring safety has changed as these locks become more automated. The article states that, "Hotel Management corresponded with Tim Shea, president of ASSA ABLOY Hospitality, for ways in which vendors are keeping hotel locks secure." Through VingCard Elsafe's locks, hotel security and safety has increased. VingCard says, "Our Classic magstripe locks do not store critical security information within individual locks, such as master key information, and any service device must authenticate itself through diversified encryption methods to gain access to the lock software." This is just one of the ways the locks increase security. The article also states that the system is cost-effective for hoteliers.

This article talks about the future trend of the hospitality security, which is technology is opening new doors to hotel safety.  The author introduces some different technologies such as Contact-less Smartcards and RFID that hotels like New York's Plaza Hotel are currently using. Finger print or cellphone wipe technology is also used instead of card, which should be more safe. Some hotels even use video-capture systems to make sure the security is perfect. After introducing these technologies, the author also talks about the privacy issues. Because some customers are not willing to be on cameras. However, though some of them are concerning about this issue, an expert predicts that new security measures will eventually become such a part of everyone's everyday lives that he or she will become the norm. All in all, this article gives us the trend that more and more technologies will be used for hotel security in the future.

this article talks about new technology that is being implemented throughout out US and the world. Old key cards are now going to be replaced with even older standard keys or the radio frequency identification card that can be waived in front of the door to gain access. Also, there is a technology that will sent an encrypted sound text to guest;s cell phone, which when played back will open the door.  It talks about technology that tracks all employees, guests and their luggage.  There are several concerned that travelers have about their privacy, but article stated that it all depends on the type of the traveler.  Also, the face recognition technology used in Houston's largest hotel remembers guests names and when they return, guests are greeted by name.  Article concludes that even with all this technology, the best security is provided through interdependence of travelers and employees.  

Technology in the hotel travel and tourism industry will be changing drastically in the near future, from the swipe of a cell phone, print of a finger, facial recognition, iris scanners, security is going to be taken to the next level. the plastic key cards will soon no longer exist. Radio frequency I'd cards are the new thing, where guest will use this for preferences for everything, from charging things to your room, preference of floor type to pillow choice, chick in and out etc. systems that track the other qualities of a person instead of using a key or card are in development as well. There are research going on how to open the door and. Lose wi just the persons walk and movements. Some people think these new security technologies are awesome, while some think they are not, people dont want to be watched 24/7while on vacation they just want to enjoy there stay. But in today's society all travelers are becoming interdependent on each other for safety and security.

From what I research from the article, VLAN as a local area network itself actually is quite secure cause the fake IP address means a private one.  And it is already encrypted. But the hackers had imitate the hotel's main server. As for the technology developing, it seems like the more secure the system make, the smarter the hacker would be. 

This article introduced how hotels improve their network to enhance security. To reduce the potential for stealing by theft and hacker, the W Dallas Hotel set up virtual local area networks. Compared with relatively rundimentary hub technology and encryption for Wi-Fi, the biggest advantage of this VLANs is to inhibit attackers from using computer to imitate the hotel'smain server. I think increaing a hotel network's security is very necessary, still, people should pay more attention to this and improve the techonology to make sure the security of all aspects.

Revel Systems has joined forces with Network Intercept to create a new iPad POS system. It will make Revel Systems one of the most secure restaurant POS providers on the market. Because keeping the customers' credit card information safe is the top priority of Revel Systems, they have a passion to create the software which can provide the highest level of protection by using verification and encrypting all data and payment information from end to end.

Security is obviously very important in hospitality and technological advancements are helping to make hotel stays easier and more secure. The hotel industry is exploring options to that replaces the standard plastic keycards with new entry methods. One example is using smartcards or RFIDs, which stands for radio frequency identification. Smartcards and RFIDs work like a fast-pass at a gas station when quickly paying at the pump. The guest simply waves the card/key in front of a sensor granting entry. The guest doesn't have to worry about the card being deactivated by his or her cell phone and the hotel doesn't have to constantly spend on replacements. Another example is technology that allows us to enter our hotel rooms using our using our phones. Guests would download an app, receive a text message with an encrypted sound code and play it by the door to be granted entry. Using biometrics for entry is likely the ultimate level of technological security. Like in the movies, guests would have their physical attributes scanned including eyes, and/or thumbprint to identify a guest. Video cameras will always be a great form of security. Now that they're getting smaller and more vivid, surveillance makes the phrase "Big Brother is watching" all the more relevant by being a huge crime and incident deterrent. Technology is advancing rapidly and I can see some of these methods hitting mass markets sooner than we think.

This article talks about the new technologies applied in the hotel to keep safety. The first one is Smart cards/RFID that helps to open the door via sensor receiving. The next one is smartphone, personal belongings that help to open the door with encrypted sound code. Biometrics also can help by identifying personal physical traits. For hotels, security cameras is necessity. 

This article talks about how there is a serious concern in the hotel industry when it comes to credit card and identity theft. They talk about how all the major brands in the hotel industry were all victims of highly publicized, major breaches in the last year alone. Also, including airline and banks, hotels maintain a wealthy amount of database of personal and financial data. For example, with new technology systems being created, POS systems are a weak security point for many networks because they are constantly in use and are not always updated or even protected from vulnerabilities. The article talks about personal details for hotel guests are frequently stored in a variety of locations including restaurants, facilities, and government buildings, so hackers have a greater possibility to access your personal information. The bigger hotels are in more danger because of the volume of guests that come in and out of the location. Smaller hotels should be concerned not just about their security but also by ransomware, an increasingly favorable tactic to extort hoteliers by hackers who encrypt the hotels data making it inaccessible until ransom is paid for. I believe hotels need a toolbelt of various securtiy technologies that can be used to prevent future malicious attacks. I think by managing and implementing a firewall is essential which helps get rid of dangerous traffic from coming onto the network and preventing sensitive data from being hacked.

MOD 10: This article discusses the main tactics of cyber hackers that target hotels. Point of sale (POS) systems are easy targets for hackers due to their constant use during operation hours and because of that their security measures aren't always up to date. Hotels have large data banks since they're storing consumer profile information such as home addresses, phone numbers and credit card numbers. There's a large risk when it comes to security breaches within franchises because they have access to their parent company's regional, national and global systems. If their systems are hacked and breached, then that puts the whole system of the brand at risk. Security breaches within a system can also damage a brands reputation with the public. According to the article, "Recent major breaches at Fortune 500 companies and household names across the retail, restaurant and hotel sectors demonstrate that anti-virus, anti-malware and firewalls alone are not enough to secure businesses from the ever-evolving threat landscape." Smaller properties are even at a greater risk because not only do they have to monitor their compliance with PCI but also monitoring their security systems for their database and PMS system. Some of the recommended software's that should be used by hotels looking to be proactive with their company's cyber security is File Integrity Monitoring(FIM), Unified Threat Management(UTM), and Security Information and Event Management(SIEM).

This article explores the different tactics hotels should use after a cyber attack. The article mentions several different type of attacks such as Phishing when hackers trick customers into giving up their login credentials. Ransomware, when hackers encrypt data making it unusable and inaccessible for the hotel. Not one solution but rather companies should be equipped with a series of technologies from firewalls to file monitoring programs. Some of these technologies, like SIEM requires an intelligent IT team to have the capabilities of analyzing and monitoring the reports produced. This may be more difficult for smaller businesses to implement and maintain.

This article tells about the perspectives of Hotspot 2.0, the new standard for public WiFi, in the hotel industry. The WiFi Alliance has been working on designing this new standard which is supposed to be much friendlier to the users while making Wi-Fi usage more akin to cellular. It allows automatic WiFi network detection and eliminates the public Wi-Fi log-ins, providing automatic access to secure Wi-Fi networks using a Passpoint profile stored on a device. For hotel guests, this means they would be able to go from using their mobile devices on their personal mobile networks to the hotel's Wi-Fi without having to re-enter their authentication credentials every time. This feature, in my point of view, would be very useful, especially for the business travelers who value every second of their time. Another major benefit of Hotspot 2.0 is improved security by means of enterprise-grade WPA2 encryption, which makes it safer than open public networks. This also will be appreciated by the travelers who often use hotel's WiFi networks for booking different travel services and insert security sensitive data. However, the cost of implementation of this new standard in the hotels is rather high. Thus, hoteliers do not wish to force its realization until they are sure that there is demand from the customers. The polls show that the guests are still unaware of the benefits of Hotspot 2.0 and don't consider it as a key point while choosing a hotel. Yet some hotels try to be before the competition and become early adopters of this technology. They believe that quality of internet connection, as well as additional options, will be a differentiating point for hotels in the future. However, in my opinion, it would be wise to conduct appropriate research and wait until this technology will be close to becoming the industry standard before making significant investments. There is always a chance that the trend will go another way.

Restaurants have always been an easy target for cyber security hackers, in particular, hackers who are looking for credit card and ID information. Restaurants provide hackers with a "wealth of client data" due to the high "volume of credit card transactions and CRM data available." Once given access, a hacker could simple install malware and duplicate all customer information. Already facing critical financial issues during Covid 19, restaurants large and small need to take a stronger presence in the protection of their data. If discovered to be the start of a breach, customers will tend to avoid that business. "Chipotle, for example...got devalued by about $400 million after they suffered a breach," and many small restaurants "go belly up six months after an attack." Below is a summary of the types of attachs restaurants face: 1. Unprotected Wifi 2. Social engineering and phishing attacks. This is actually the one that stood out to me the most because of how sophisticated these attacks can be. It is a reminder that we are all at risk, both the technologically challenged and gifted. 3. Malware 4. Covid 19 Scams 5. Grub hub scams 6. Supply chain scams *A particular issue for restaurants and commercial businesses right now as companies scramble to find new vendors who can supply them with the products they require. 7. Public Health scams 8. Government Stimulus scams 9. Technical support scams How can we fight against these? Here are the recommendations: 1. PCI compliance 2. Hire and IT security professional to conduct a risk analysis and if possible, keep on as a consultant or full time 3. Keep a secure network and change free passwords daily 4. Use the latest operating systems, force multi-factor authentication, strong passwords, and use encryption services for data storage and transfers 5. Install and use robust web-filters and security software programs 6. Maybe most important!!! Train your employees. 5.

This article highlights several important security issues in the hospitality industry, followed by the practice of protecting data from loss. The data structure of the hotel industry is complex, customers mainly use bank cards to pay, and the staff turnover rate is high. There are certain internal threats. In order to solve these problems and avoid data loss, it is not enough to strengthen network security. It is also important that employees are trained and familiar with and comply with relevant regulations.

Hospitality offers an ideal target vector for conducting Cyber crimes such as identity theft and credit card fraud due to the existence of multiple databases and devices containing both Payment Card Information (PCI) and Personally Identifiable Information (PII). Restaurants, hotels, and other companies in the hospitality sector often have complex ownership structures with an individual owner or group of owners, and a management company that acts as the operator. Each of these groups may use different computer systems to store information, and the information can also frequently move across those systems.

In this article, we learn about the top five data security risks as well as best practices to help prevent data breaches. According to the article, the hospitality industry is a prime target since it stores a vast amount of sensitive guest information like names, phone numbers, addresses, and credit card numbers. Some of the five risks included complex ownership structures, reliance on paying by card, and insider threats to name a few. In order to avoid these threats, the article suggest that companies become PCI compliant, use cybersecurity measures like firewalls, and know where exactly their data is stored.