The Hotel booking software provider FastBooking is the last victim of a data breach, the incident exposed personal details and payment card data of guests from affected hotels.
FastBooking offers hotel booking platform to more than 4,000 hotels in 100 countries.
According to the experts, the number of impacted hotels worldwide could be greater than 1000, roughly 380 only in Japan. The company did not provide details about the number of affected users.
The company promptly notified via email the incident to each affected hotel providing details about the number of affected guests.
“Following the discovery of a suspicious application, the server log files were analyzed
(computer activity traces) and we found out that some files containing data had leaked.” reads a notice published by the company.
“Fastbooking immediately eradicated the vulnerability and took steps to prevent this
incident from recurring and to mitigate any negative consequences: implementing higher security standards, changing passwords on our systems, and so on.”
The attackers exploited a vulnerability in the web app to back into the FastBooking system.
The breach was discovered by company staff that noticed the presence of the malware on the server. The malware is a backdoor that allows the attacker to gain control over the server and steal the sensitive data.
The company notified the data breach via emails, hackers compromised the server on June 14 and installed a malware on the company server that was used to exfiltrate the precious data.
The hotel chain Prince Hotels & Resorts in Japan already notified the data breach to its customers. The hotel chain announced that the incident affected 124,963 guests who stayed at 82 of its hotels.
“This notice is to make you aware that Prince Hotels & Resorts reservations system in English, Simplified Chinese, Traditional Chinese, and Korean have been impacted by an unauthorized access to or acquisition of your personal information.” reads the data breach notification.
“We have learned that Fastbooking in France which is a parent company of Fastbooking Japan, our reservations system operator for international guests, had an unauthorized access.”
Below the incident timeline:
June 14, 2018, 8:43 PM UTC – hackers breached FastBooking’s server.
June 19, 2018, 3:40 PM UTC – The company discovers intrusion.
June 19, 2018, 9:02 PM UTC – The company closes breach.
Experts believe this data breach could trigger a series of data breach notifications from all the affected hotels.
(Security Affairs – malware, Data breach)