Tech Talk

Recent posts

Think about the moment when you first enter your hotel room. Look around: Does the room tell you anything unique about the hotel where you are staying? Or is it all beige walls and double beds with white covers, and you have to walk back outside and look at the sign on the hotel’s facade to even remember where you are?

Hotel guests commonly bring multiple devices with them during their stay. However, many hotel environments don’t provide easy access to charging outlets. This situation can lead to a guest feeling more than inconvenienced. A recent survey found almost 90 percent of people "felt panic" when their phone battery dropped to 20 percent or below.

Spam is one of the major problems that most hotel website owners face on regular basis. It is a bad practice used by spammers to persuade the page rank of a site.

GBTA recently partnered with AccorHotels to conduct a study investigating the role of loyalty in managed travel programs in Europe with the goal of understanding how loyalty programs currently fit within company travel policy and what opportunities may exist in the future.

People today expect to be connected always and everywhere; sometimes it’s hard to believe that there was a world before smartphones and Wi-Fi. In the time since Wi-Fi became ubiquitous in hotels, apartments, and public spaces, it has fueled the evolution of connectivity in a lot of ways. Just like Maslow’s hierarchy of needs, the most basic needs start at the bottom, and you can’t get to the next level without a strong foundation. 



want to read more articles like this?

want to read more articles like this?

Sign up to receive our twice-a-month Watercooler and Siegel Sez Newsletters and never miss another article or news story.

x
 

Back to the Basics - Making Payment Security Business as Usual

08/15/2014

The truth is that many of the greatest protective measures you can take to secure confidential information are also the most simple. While attacks have incrementally gained in sophistication, they often aren’t immune to being detected and stopped before the damage has been done. Yet even today, we’re still seeing that security basics are being overlooked and leading to compromises. For example, passwords are a key way to securing access to computers and your point-of-sale environment. Not changing these passwords regularly or using ones that are easily-guessed is like leaving the cash register open and one of the simplest ways for criminals to sneak into your system and access valuable customer payment information. ‘Password' is still one of the most common password used by businesses today; in 2013 two out of three breaches involved compromised credentials according to the 2014 Verizon Data Breach Investigations Report (DBIR).

Another great example is outdated software. As we saw recently with the end of XP support, many retailers and especially smaller retailers are still not aware of the risk to their payment systems and business that comes with having outdated software on their systems. Running old software without the security support, patches and updates, leaves businesses wide open to the latest vulnerability such as the Heartbleed bug or one of the many millions of new pieces of malware being created.

Recently, the PCI Security Standards Council created a quick infographic with 10 simple steps to help drive home the basics and importance of making these practices part of your everyday business.

https://www.pcisecuritystandards.org/pdfs/PCI-Top-Ten.pdf

The PCI Security Standards provide the foundation for this multi-layered approach to data security. Version 3.0 of the PCI DSS takes a special focus on helping you make payment security business as usual, through increased education and awareness, flexibility and understanding security as a shared responsibility.

But even with the best standards in place, criminals after payment card data are persistent in their attacks; we have to be persistent in our defenses, relying not just on one layer of protections but many. This effort must be part of an ongoing and vigilant security program. The PCI community continues to work to update and develop its standards while also providing guidance on other technologies, such as tokenization and Point-to-Point Encryption (P2PE) that can help simplify their PCI DSS compliance efforts and provide added security. In the fall issue of Hospitality Upgrade Magazine, we’ll talk more about these and EMV chip technology and how they can work together with PCI Standards to help you reduce your risk and protect your customers’ payment information.

About The Author
Bob Russo
General Manager
PCI Security Standards Council


 
Comments
Blog post currently doesn't have any comments.
Leave comment



 Security code