Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

Fastbooking Hack Leaves Japan Hotel Red-Faced

A Japanese hotel chain has apologised after more than 120,000 items of customer information were stolen in hacks of its reservations handled by French company Fastbooking.

A Japanese hotel chain has apologised after more than 120,000 items of customer information were stolen in hacks of its reservations handled by French company Fastbooking.

Prince Hotel, a major Japanese hotel operator, said the breach occurred when hackers attacked Paris-based Fastbooking, which manages its foreign-language bookings.

A Fastbooking spokeswoman confirmed that the company had been hacked on June 14 and had not detected the attack until June 19.

“All of our markets have been affected but this represents a minority of our customers,” she said.

She declining to say how many hotels were affected, but said Japanese data made up a large proportion of the hacked information.

Fastbooking, a subsidy of French multinational AccorHotels, handles reservations for some 4,000 hotels in 40 countries.

Prince Hotel said the server for its English, Chinese and Korean-language websites was hacked twice earlier this month and a total of 124,963 items of information such as names, credit card numbers and addresses were stolen.

“There was unauthorised access to the servers of Fastbooking in France,” the hotel said in a statement.

The hotel said names, home addresses, phone numbers and other personal information of customers who had booked rooms between May and June 2017 were taken, and that credit card numbers were stolen from customers who had made reservations before August 2017.​

Prince Hotel president Masahiko Koyama apologised and bowed deeply at a press conference on Tuesday.

“We’re deeply sorry for causing great concern and trouble,” he said.

The hotel chain said it was suspending its websites until it could ensure their security.

Related: Hotel Rooms Around the World Susceptible to Silent Breach

Related: Hyatt Hotels Hit by Another Card Breach

Written By

AFP 2023

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Cybercrime

Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Cybercrime

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.

Cybercrime

The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.

Cybercrime

A new study by McAfee and the Center for Strategic and International Studies (CSIS) named a staggering figure as the true annual cost of...

Cybercrime

CISA, NSA, and MS-ISAC issued an alert on the malicious use of RMM software to steal money from bank accounts.

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...