Viator breach highlights susceptibility of online payments: CipherCloud

Viator breach highlights susceptibility of online payments: CipherCloud

Cloud information protection company points to weak encryption as the reason for the intrusion.

The Viator data breach highlights the vulnerability of security for online payments, according to CipherCloud.

TripAdvisor, which owns the affected tour-booking and review website, disclosed the breach and how it potentially exposed the payment card data of 1.4 million customers.

Based on the released information, chief trust officer, Bob West, said the breach could have been prevented if Viator had used stronger encryption for user identities and credit card numbers.

“It’s also possible that strong encryption was used but the keys weren’t managed properly by Viator, which is as good as locking your car and leaving the keys in,” he said.

Better way of reporting

West said the Viator data breach comes at a time when security discussions centre on point-of-sale (PoS) malware in physical stores.

“Online payments are another major source for identity thieves to steal consumer information,” he said.

Free credit reporting is available for affected customers to deal with these types of incidents, though West characterises it nothing more than a “nice gesture.”

“Cyber criminals could just wait out the year and then apply for credit using the stolen personal information with names and addresses pieced together with other identifiers obtained elsewhere,” he said.

Read more: Security a core competency, differentiator for MSPs: Oracle

Patrick Budmar covers consumer and enterprise technology breaking news for IDG Communications. Follow Patrick on Twitter at @patrick_budmar.

Follow Us

Join the New Zealand Reseller News newsletter!

Error: Please check your email address.

Tags intrusiontripadvisorsecurityCipherClouddata breachViator Tours & Activities



Sizing up the NZ security spectrum - Where's the channel sweet spot?

Sizing up the NZ security spectrum - Where's the channel sweet spot?

From new extortion schemes, outside threats and rising cyber attacks, the art of securing the enterprise has seldom been so complex or challenging. With distance no longer a viable defence, Kiwi businesses are fighting to stay ahead of the security curve. In total, 28 per cent of local businesses faced a cyber attack last year, with the number in New Zealand set to rise in 2017. Yet amidst the sensationalism, media headlines and ongoing high profile breaches, confusion floods the channel, as partners seek strategic methods to combat rising sophistication from attackers. In sizing up the security spectrum, this Reseller News roundtable - in association with F5 Networks, Kaspersky Lab, Tech Data, Sophos and SonicWall - assessed where the channel sweet spot is within the New Zealand channel. Photos by Maria Stefina.

Sizing up the NZ security spectrum - Where's the channel sweet spot?
Show Comments