Cyber/physical perils in hospitality

April 2019 Editor's Choice, Cyber Security, Entertainment and Hospitality (Industry)

Most of us wait all year for our annual vacation. In all likelihood, it will be either a time relaxing at home with loved ones or embarking on a trip to an idyllic location. Although technology has seemingly made travel and accommodation planning a lot easier, many people are finding out that they are under more stress than during the Internet-free days.

Although, in the not so distant memory, there were cases of arriving at a dodgy destination, most vacationers returned to trusted venues and used reputable travel agencies. In the past, securing your home while you were away entailed arranging a house sitter, setting certain lights to a timer, having your mail collected regularly and asking trusted neighbours to keep an eye on the place.

Today we face a world of unscrupulous scam artists, cons, fake websites and the like, all trying their utmost to fleece us from our hard-earned money. How can we prepare for our holidays and avoid becoming the victim of a scam or data breach?

• When doing an Internet search, beware of third-party websites or being redirected to another site.

• Fraudulent call centres and websites often claim to be official representatives of hotels and airlines. This can lead to a wrong booking, hidden costs or a worst-case scenario, no reservation at all.

• Preferably book through the hotel’s official website. Type in the URL rather than clicking on a link. Should you have to use a third-party site, confirm with the hotel that they are indeed affiliated.

• Confirm that your choice of hotel/resort has adequate privacy and data protection policies in place. Credit card details of guests are normally kept on file for additional charges incurred and these make attractive targets for hackers and the like.

• Does the establishment have a secure computer and Wi-Fi network?

• Free Wi-Fi + thousands of users + latest technology = a recipe for having your data breached.

• Make use of a VPN (although not 100% safe) if you will be accessing sensitive information. Remember, DarkHotel malware is still doing the rounds and it is a very cunning piece of malware, able to track you around the world and hiding itself if it considered it had been detected. The Marriot Hotel Group were recently breached via their Starwood guest register database, leaking the personal details of over 500 million clients.

• Never leave devices unattended in hotel rooms. Magical elves do not make up the room, humans do.

• Familiarise yourself with foreign immigration laws. Certain countries have laws that allow your devices to be inspected and if need be, all your data copied.

• Encryption, VPN and certain websites are banned in some countries, jail terms can apply.

• Do not announce your travel plans on social media, this not only opens you up to cybercrime, but physical robbery at your home and even your holiday venue. Post your photos when you get back.

What can be done to protect you and your devices?

• Take the minimum devices needed and secure those left at home.

• Disable Bluetooth (even your vehicle/rental) and your home Wi-Fi.

• Disable auto-connect functions and let devices ‘forget’ SSIDs in their lists.

• Remove/configure geolocation and photo options.

• Configure/disable apps that do not need to have access to your devices.

• Use strong passwords, preferably 2FA (two-factor authentication).

• Back up all your data.

• If in doubt about a Wi-Fi connection, revert to mobile data. Not cheap on consumption, but safer.

• Only visit websites offering https://, even though this is not totally safe nowadays.

• Ensure all devices are running the latest OSs. Windows 10 needs the latest Defender.

• Before departing, charge all your devices fully and have back up power sources. A multi-adaptor is essential if visiting foreign countries.

• Should you purchase any electronics (especially from those cheap Asian countries), be sure to check them out on your return as most have built in spyware, etc.

• Change your passwords again on your return.

On a personal safety note:

• Before embarking to your destination, be it local or foreign, check out government travel warnings regarding both country and location.

• What surveillance systems does your proposed destination have in place? Physical security, CCTV cameras or both?

• What tested reaction plans do they have in place in the event of an incident. Are there medical facilities on-site or in the vicinity?

• Are there tourist police available who speak your language and who are less likely to be corrupt?

• Are there crowd control measures in places for popular venues, e.g. theme parks, sports stadiums, concert venues, beaches, etc?

• Do an online search of your location, checking for complaints, past incidents, resolution to issues, etc.

If you have managed to do all the above, then you really need a holiday.

For more information contact Wolfpack Information Risk, +27 11 794 7322, info@wolfpackrisk.com, www.wolfpackrisk.com


Credit(s)




Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Platforms and community lead the future
May 2019, Milestone Systems , Editor's Choice, CCTV, Surveillance & Remote Monitoring, News, Integrated Solutions
Milestone Systems took a look into the future of open platforms and the power of community at MIPS EMEA in Copenhagen in March this year.

Read more...
30 years of business continuity
May 2019, ContinuitySA, Technews Publishing , Editor's Choice, Security Services & Risk Management
ContinuitySA is celebrating its 30th anniversary this year and Hi-Tech Security Solutions spoke to CEO Michael Davies about the changes he has seen in the business continuity and disaster recovery markets.

Read more...
The consequences of false alerts
May 2019, Leaderware , Editor's Choice, CCTV, Surveillance & Remote Monitoring, Integrated Solutions
Craig Donald discusses the impact of false alarm rates on the utility of intelligent security technology systems.

Read more...
The enemy within – insider ­security threats
May 2019, Wolfpack Information Risk , Editor's Choice, Cyber Security, Financial (Industry)
Insider threats in today’s financial world are insidious and destructive and your defence against insiders should start long before the person assumes his/her position.

Read more...
Protecting people’s money, and their data
May 2019, Cathexis Technologies, CA Southern Africa, IDEMIA , Editor's Choice, Integrated Solutions, Financial (Industry)
The temptations inherent to the banking sector, and financial institutions more generally, pit them in an eternal and increasingly high-tech battle to secure themselves against threats from within and without.

Read more...
Access authentication with a wave
May 2019, IDEMIA , Editor's Choice, Access Control & Identity Management, Integrated Solutions, Financial (Industry), Commercial (Industry)
Financial organisations are making the move to contactless fingerprint biometrics in order to meet the increasing burden of regulatory and compliance demands.

Read more...
The benefits of background screening
May 2019, iFacts, Managed Integrity Evaluation , Editor's Choice, Security Services & Risk Management
Companies need to be more vigilant about the people they employ by making sure comprehensive background screening checks are conducted.

Read more...
Does your control room add value?
May 2019, Fidelity Security Group, G4S South Africa, Progroup , Editor's Choice, CCTV, Surveillance & Remote Monitoring, Integrated Solutions, IT infrastructure, Commercial (Industry)
Whether on- or offsite, control rooms are a critical aspect of security today and care must be taken in the design and rollout of these nerve centres.

Read more...
Intruder detection is becoming smarter and more mobile
May 2019, Elvey Security Technologies , Regal Distributors SA , Editor's Choice, Perimeter Security, Alarms & Intruder Detection
Alongside the new technologies continually being developed, existing technologies are being co-opted into not only performing an intrusion detection role, but combatting that bane of the electronic security industry: false alarms.

Read more...
iLegal 2019: Augmented surveillance - realising the full potential of CCTV
May 2019, Technews Publishing , Editor's Choice, News, Conferences & Events, Training & Education
iLegal 2019 will look at what is becoming known as Augmented Surveillance – using technologies and people interactively to maximise results from operators and control rooms in order to make intelligent security and business decisions.

Read more...