{"id":8517,"date":"2019-07-02T13:34:54","date_gmt":"2019-07-02T11:34:54","guid":{"rendered":"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/"},"modified":"2025-01-14T11:25:15","modified_gmt":"2025-01-14T10:25:15","slug":"the-marriot-case-and-cybersecurity-in-the-tourism-sector","status":"publish","type":"global-blog","link":"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/","title":{"rendered":"The Marriot case and cybersecurity in the tourism sector"},"content":{"rendered":"

Both those of us who are involved in cybersecurity and those who are not no doubt have in mind the recent hacking of Marriott, one of the world\u2019s most important hotel companies, given the media impact of the news. At the end of last November, we woke up one fine day to discover that the multinational had confirmed it had suffered “unauthorised access” to its client database. We are talking about the data of 500 million people.<\/p>\n

Specifically, the access took place through the reservation centre of the company of the Starwood group, a chain with which it merged in 2016. It has been speculated that the data accessed and \u201cextracted\u201d could include names, telephone numbers, email addresses, passport numbers, dates of birth, check in and check out information, as well as client credit card numbers, along with their expiry dates. <\/p>\n

The cause, beyond a possible third-party malware attack in the IT systems of some hotels, has not been revealed. <\/p>\n

The truth is that this macro-hacking <\/em>displays a reality which had been clear for some years for cybersecurity experts: the tourism sector is a clear target for cybercrime, and cybersecurity must be a priority for organisations devoted to tourism. <\/p>\n

This sector, like so many other industries at the time, has undergone what I personally call the \u201cdemocratisation\u201d of cybersecurity:  the unstoppable advance of digital transformation and the mass use of technology have increased extraordinarily the \u201cattack area\u201d of these companies, thus increasing their likelihood of being a target. Online reservation platforms (accessible both through web applications and mobile apps), systems for the mass analysis of the data of clients and potential clients, based on artificial intelligence, machine learning and big data, the mass use of the cloud, the outsourcing of numerous services (either in the management or marketing process of clients or others in the business value chain), IoT automation of the control of access to facilities and resources, exponential increase in corporate information systems, as well as mobile devices, the mass interconnectivity of systems and technologies and a long etcetera comprise a far greater target for hackers compared to the IT infrastructure of just a decade ago. <\/p>\n

Why might the tourism sector be a target? I will attempt to cast light on this matter: <\/p>\n

On the one hand, indiscriminate attacks such as phishing, ransomware, malware, etc., are and will clearly become more frequent as the use has increased of information systems \u201con a user level\u201d, making them also vulnerable to these types of attacks <\/p>\n

On the other hand, beyond any attacks more aimed at \u201ctraditional\u201d purposes, such as harming the image of the company through the degradation of the service or bad publicity on social networks, corporate or client data theft due to reasons of industrial espionage, etc., we find some \u201cnew\u201d reasons. <\/p>\n

The information these organisations possess is the key: vast amounts of credit card and banking data which cybercriminals want to traffic to subsequently try and steal cash; enormous amounts of personal data and emails to be used in phishing campaigns, blackmailing, identity theft, fraud and countless criminal uses; the sale of data regarding likes, opinions and trends, etc., for marketing campaigns and market research studies, and for many other criminal purposes. <\/p>\n

In addition, there are also far darker reasons, related to cyberespionage, cyberintelligence and cyberterrorism in the tourism sector. Let us imagine that some of these companies might have information on relevant personalities, whether these are celebrities, those holding political, governmental, military or religious positions, high-level dignitaries, executives from large corporations, etc. <\/p>\n

Data such as, for example: locations and times\/dates (country, city, even the room, including the time or day), likes, allergies, medical afflictions, details of their travel plans (aeroplane, limousine, taxis, and so on) and much more. Clearly, the possession of this information, depending on who accesses it, at what point and with what intentions, could come to have very serious implications for people\u2019s integrity, even on a scale of the global security of corporations, institutions and the national security of whole countries.      <\/p>\n

To this end, given the relevance cybersecurity might come to have in the tourism sector and its entire supply chain, here at the Information Security area of Auren, as experts in the matter, we also help to advise organisations in the tourism sector and their providers, to analyse, define and implement those prevention and detection measures in matters of cybersecurity in their various business procedures and purely  ICT processes (which may be necessary depending on their level of risk exposure) to try to mitigate those threats to which they may be subject. <\/p>\n

Jos\u00e9 Miguel Cardona, Auren Spain<\/em><\/strong> <\/p>\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

Both those of us who are involved in cybersecurity and those who are not no doubt have in mind the recent hacking of Marriott, one of the world\u2019s most important hotel companies, given the media impact of the news. At the end of last November, we woke up one fine day to discover that the multinational had confirmed it had suffered “unauthorised access” to its client database. We are talking about the data of 500 million people.<\/p>\n","protected":false},"featured_media":8518,"template":"","meta":{"_acf_changed":false},"global-blog-category":[],"class_list":["post-8517","global-blog","type-global-blog","status-publish","has-post-thumbnail","hentry"],"acf":[],"yoast_head":"\nThe Marriot case and cybersecurity in the tourism sector - Auren Israel<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"The Marriot case and cybersecurity in the tourism sector - Auren Israel\" \/>\n<meta property=\"og:description\" content=\"Both those of us who are involved in cybersecurity and those who are not no doubt have in mind the recent hacking of Marriott, one of the world\u2019s most important hotel companies, given the media impact of the news. At the end of last November, we woke up one fine day to discover that the multinational had confirmed it had suffered “unauthorised access” to its client database. We are talking about the data of 500 million people.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/\" \/>\n<meta property=\"og:site_name\" content=\"Auren Israel\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/AurenIsrael\" \/>\n<meta property=\"article:modified_time\" content=\"2025-01-14T10:25:15+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/auren.com\/il\/wp-content\/uploads\/global\/2019\/07\/blog-ciber-turismo-1.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"984\" \/>\n\t<meta property=\"og:image:height\" content=\"657\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/\",\"url\":\"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/\",\"name\":\"The Marriot case and cybersecurity in the tourism sector - Auren Israel\",\"isPartOf\":{\"@id\":\"https:\/\/auren.com\/il\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/auren.com\/il\/wp-content\/uploads\/global\/2019\/07\/blog-ciber-turismo-1.jpg\",\"datePublished\":\"2019-07-02T11:34:54+00:00\",\"dateModified\":\"2025-01-14T10:25:15+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/#primaryimage\",\"url\":\"https:\/\/auren.com\/il\/wp-content\/uploads\/global\/2019\/07\/blog-ciber-turismo-1.jpg\",\"contentUrl\":\"https:\/\/auren.com\/il\/wp-content\/uploads\/global\/2019\/07\/blog-ciber-turismo-1.jpg\",\"width\":984,\"height\":657},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/auren.com\/il\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"The Marriot case and cybersecurity in the tourism sector\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/auren.com\/il\/#website\",\"url\":\"https:\/\/auren.com\/il\/\",\"name\":\"Auren Israel\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/auren.com\/il\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/auren.com\/il\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/auren.com\/il\/#organization\",\"name\":\"Auren Israel\",\"url\":\"https:\/\/auren.com\/il\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/auren.com\/il\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/auren.com\/il\/wp-content\/uploads\/2025\/01\/cropped-cropped-favicon-Auren-2.png\",\"contentUrl\":\"https:\/\/auren.com\/il\/wp-content\/uploads\/2025\/01\/cropped-cropped-favicon-Auren-2.png\",\"width\":512,\"height\":512,\"caption\":\"Auren Israel\"},\"image\":{\"@id\":\"https:\/\/auren.com\/il\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/AurenIsrael\",\"https:\/\/www.linkedin.com\/company\/auren-israel\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"The Marriot case and cybersecurity in the tourism sector - Auren Israel","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/","og_locale":"en_US","og_type":"article","og_title":"The Marriot case and cybersecurity in the tourism sector - Auren Israel","og_description":"Both those of us who are involved in cybersecurity and those who are not no doubt have in mind the recent hacking of Marriott, one of the world\u2019s most important hotel companies, given the media impact of the news. At the end of last November, we woke up one fine day to discover that the multinational had confirmed it had suffered “unauthorised access” to its client database. We are talking about the data of 500 million people.","og_url":"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/","og_site_name":"Auren Israel","article_publisher":"https:\/\/www.facebook.com\/AurenIsrael","article_modified_time":"2025-01-14T10:25:15+00:00","og_image":[{"width":984,"height":657,"url":"https:\/\/auren.com\/il\/wp-content\/uploads\/global\/2019\/07\/blog-ciber-turismo-1.jpg","type":"image\/jpeg"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/","url":"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/","name":"The Marriot case and cybersecurity in the tourism sector - Auren Israel","isPartOf":{"@id":"https:\/\/auren.com\/il\/#website"},"primaryImageOfPage":{"@id":"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/#primaryimage"},"image":{"@id":"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/#primaryimage"},"thumbnailUrl":"https:\/\/auren.com\/il\/wp-content\/uploads\/global\/2019\/07\/blog-ciber-turismo-1.jpg","datePublished":"2019-07-02T11:34:54+00:00","dateModified":"2025-01-14T10:25:15+00:00","breadcrumb":{"@id":"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/#primaryimage","url":"https:\/\/auren.com\/il\/wp-content\/uploads\/global\/2019\/07\/blog-ciber-turismo-1.jpg","contentUrl":"https:\/\/auren.com\/il\/wp-content\/uploads\/global\/2019\/07\/blog-ciber-turismo-1.jpg","width":984,"height":657},{"@type":"BreadcrumbList","@id":"https:\/\/auren.com\/il\/global-blog\/the-marriot-case-and-cybersecurity-in-the-tourism-sector\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/auren.com\/il\/"},{"@type":"ListItem","position":2,"name":"The Marriot case and cybersecurity in the tourism sector"}]},{"@type":"WebSite","@id":"https:\/\/auren.com\/il\/#website","url":"https:\/\/auren.com\/il\/","name":"Auren Israel","description":"","publisher":{"@id":"https:\/\/auren.com\/il\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/auren.com\/il\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/auren.com\/il\/#organization","name":"Auren Israel","url":"https:\/\/auren.com\/il\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/auren.com\/il\/#\/schema\/logo\/image\/","url":"https:\/\/auren.com\/il\/wp-content\/uploads\/2025\/01\/cropped-cropped-favicon-Auren-2.png","contentUrl":"https:\/\/auren.com\/il\/wp-content\/uploads\/2025\/01\/cropped-cropped-favicon-Auren-2.png","width":512,"height":512,"caption":"Auren Israel"},"image":{"@id":"https:\/\/auren.com\/il\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/AurenIsrael","https:\/\/www.linkedin.com\/company\/auren-israel"]}]}},"_links":{"self":[{"href":"https:\/\/auren.com\/il\/wp-json\/wp\/v2\/global-blog\/8517","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/auren.com\/il\/wp-json\/wp\/v2\/global-blog"}],"about":[{"href":"https:\/\/auren.com\/il\/wp-json\/wp\/v2\/types\/global-blog"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/auren.com\/il\/wp-json\/wp\/v2\/media\/8518"}],"wp:attachment":[{"href":"https:\/\/auren.com\/il\/wp-json\/wp\/v2\/media?parent=8517"}],"wp:term":[{"taxonomy":"global-blog-category","embeddable":true,"href":"https:\/\/auren.com\/il\/wp-json\/wp\/v2\/global-blog-category?post=8517"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}