Spanish, Australian hospitality platform breaches impact nearly 5M

Almost 5 million individuals who stayed at more than 170 hotels around the world had their data exposed following the compromise of Spanish automated check-in service Chekin and Austrian hotel management software Gastrodat, according to Cybernews.

Included in the leaked 6.5 GB server, which was uncovered on Mar. 24, were personally identifiable information from about 5 million people and data from 400,000 individual bookings, such as guest names, stay dates, reservation IDs, property addresses, and internal safety flags, reported Cybernews analysts. More than 500 breached hotel and host accounts may have been used by the threat actor to infiltrate the booking systems, which have had their data automatically extracted via Python scripts. Further analysis of the attacker's server showed scripts with Telegram API, chat numbers, and bot tokens that indicate potential real-time data exfiltration. Neither Chekin nor Gastrodat has provided a comment on the incident.

"This incident highlights what can happen when a person's credentials get leaked and how a seemingly small number of leaked accounts can yield dramatically larger datasets that could be exploited further," said researchers.