Hotel / Casino Company Falls Victim to Computer Malware, and Hundreds of Thousands of Guests are Affected by the Resulting Data Breach

Yet another hotel company has been victimized by a malicious data breach, compromising its guests’ confidential personal information and exposing the hotelier to significant expense and potential liability.  This time the victim was Affinity, a Las Vegas company that owns casinos and hotels in four states. After  detecting fraudulent charges linked to one of its […]

Leading authority predicts more FTC data breach actions similar to FTC’s lawsuit against Wyndham

Robert R. Belair, a leading authority on privacy matters in Washington, D.C., predicts that in 2014 the FTC will continue its aggressive pursuit of enforcement actions against companies that are subjected to data breaches.  Belair points to the FTC’s pending lawsuit against Wyndham as an example of things to come. “Barring an adverse outcome in […]

LabMD and Wyndham Ask: Can the FTC Regulate Cybersecurity?

The FTC has been flexing its regulatory muscles in the realm of cybersecurity – and its targets are fighting back.  Medical testing laboratory LabMD is contesting an FTC complaint filed against it in August, alleging that the company failed to properly protect consumers’ personal data after information on more than 9,000 consumers was found on […]

Adobe Systems Data Breach Compromises Information of Millions of Users

Last month, Adobe Systems reported that it had experienced a data breach that potentially exposed three million customers’ information to a hacker.  Adobe later corrected this announcement, stating that the number of potentially exposed customers as a result of this same breach was actually 38 million.  Then, earlier this month, media reported that it had […]

PII and Mass Customization

By Marion Hughes-Roger, VP Business Development, Hospitality Evolution Resources   Sitting in the audience at the 2013 PhocusWright Innovation Summit, pitch after pitch is about personalization.  Whether it is technology that changes what users are sold when they access your website or mobile app, or what content is delivered when browsing your site, everyone seems […]

Updated PCI Data Security and Payment Application Data Security Standards are Released

After two years of detailed analysis and preparation, the Payment Card Industry Security Standards Council (PCI SSC), a global forum for the development of payment card security standards, has updated its best practices for businesses to follow in protecting customers’ private and financial information from data breaches. The updates are published in version 3.0 of […]

Hacked company agrees to $3 million data breach settlement

A Florida company is out $3 million because it failed to take adequate steps to prevent outsiders from stealing its customer’s personal data.  On October 21st, AvMed Inc., a health insurance provider, reached a $3 million settlement agreement with individuals affected by a data breach that occurred when two unencrypted laptops containing personal information were […]

Hospitality Industry Accused of Undermining Payment Card Security.

The Airline Information Group (AIG) has criticized the hospitality industry for failing to maintain strong payment card security.  The group accused hotel employees of contributing to the high level of credit card fraud in the industry.  AIG Managing Partner Michael Smith noted that front-line hotel employees have access to paper copies of guests’ credit card […]

InterContinental Hotel Security Breach

The Intercontinental Mark Hopkins San Francisco has notified hotel guests that a  July 4th, 2013 security incident may have permitted unauthorized access to their personal information.  Potentially compromised information includes credit card numbers and debit card numbers, as well as names, addresses, and phone numbers. The hotel general manager advised guests that, ” we have […]