Menu
Viator breach highlights susceptibility of online payments: CipherCloud

Viator breach highlights susceptibility of online payments: CipherCloud

Cloud information protection company points to weak encryption as the reason for the intrusion.

The Viator data breach highlights the vulnerability of security for online payments, according to CipherCloud.

TripAdvisor, which owns the affected tour-booking and review website, disclosed the breach and how it potentially exposed the payment card data of 1.4 million customers.

Based on the released information, chief trust officer, Bob West, said the breach could have been prevented if Viator had used stronger encryption for user identities and credit card numbers.

“It’s also possible that strong encryption was used but the keys weren’t managed properly by Viator, which is as good as locking your car and leaving the keys in,” he said.

Better way of reporting

West said the Viator data breach comes at a time when security discussions centre on point-of-sale (PoS) malware in physical stores.

“Online payments are another major source for identity thieves to steal consumer information,” he said.

Free credit reporting is available for affected customers to deal with these types of incidents, though West characterises it nothing more than a “nice gesture.”

“Cyber criminals could just wait out the year and then apply for credit using the stolen personal information with names and addresses pieced together with other identifiers obtained elsewhere,” he said.

Read more: Security a core competency, differentiator for MSPs: Oracle

Patrick Budmar covers consumer and enterprise technology breaking news for IDG Communications. Follow Patrick on Twitter at @patrick_budmar.


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags intrusionCipherCloudtripadvisorViator Tours & Activities

Featured

Slideshows

Malwarebytes shoots the breeze with channel, prospects

Malwarebytes shoots the breeze with channel, prospects

A Kumeu, Auckland, winery was the venue for a Malwarebytes event for partner and prospect MSPs - with some straight shooting on the side. The half-day getaway, which featured an archery competition, lunch and wine-tasting aimed at bringing Malwarebytes' local New Zealand and top and prospective MSP partners together to celebrate recent local successes, and discuss the current state of malware in New Zealand. This was also a unique opportunity for local MSPs to learn about how they can get the most out of Malwarebytes' MSP program and offering, as more Kiwi businesses are targeted by malware.

Malwarebytes shoots the breeze with channel, prospects
EDGE 2019: Channel forges new partnerships during evening networking

EDGE 2019: Channel forges new partnerships during evening networking

Partners, vendors and distributors reconnected during a number of social gatherings during EDGE 2019. The first evening saw the channel congregate for a welcome party at the Hamilton Island yacht club, while the main poolside proved to be the perfect stop for a barbecue on the final night.

EDGE 2019: Channel forges new partnerships during evening networking
Show Comments