Home Security Sabre rattled and hacked

Sabre rattled and hacked

Travel industry software booking engine Sabre has disclosed what may be a massive breach of payment and customer data. Sabre is used by more than 36,000 hotels and accommodation providers.

Security expert Brian Krebs spotted this admission via a mandatory quarterly filing with the US Securities and Exchange Commission. It said Sabre was “investigating an incident of unauthorised access to payment information contained in a subset of hotel reservations processed through our Hospitality Solutions SynXis Central Reservations system.”

Sabre’s press statement said it had engaged security forensics firm Mandiant to support its investigation, and that it had notified law enforcement. “The unauthorised access has been shut off and there is no evidence of continued unauthorised activity.

There is no reason to believe that any other Sabre systems beyond SynXis Central Reservations have been affected” Sabre’s statement read.

SC Magazine US strongly suggests that compromised credentials may have contributed to this data breach.

Centrify Corey Williams

Corey Williams (left), senior director Products and Marketing at cyber security and identity access management specialist Centrify, said, “This latest data breach again demonstrated the vulnerability of password-based protection. Once more, we’re reminded of the danger of relying on passwords as the means of securing access to corporate systems, apps or data.

“Passwords are the number one security problem in the world. The only reliable defence against attackers is to enable two-factor authentication. Two-factor authentication involves combining an additional factor – such as a code sent to your phone via text, voice call or mobile app – alongside a password. This raises the bar for security, making it much harder for attackers to compromise work systems and data.”

Centrify says two-factor authentication will thwart the clear majority of hacks that target corporate employees, including those with excessive permissions. Organisations should be mandating the use of two-factor authentication whenever it is technically possible. 

LEARN NBN TRICKS AND TRAPS WITH FREE NBN SURVIVAL GUIDE

Did you know: Key business communication services may not work on the NBN?

Would your office survive without a phone, fax or email?

Avoid disruption and despair for your business.

Learn the NBN tricks and traps with your FREE 10-page NBN Business Survival Guide

The NBN Business Survival Guide answers your key questions:

· When can I get NBN?
· Will my business phones work?
· Will fax & EFTPOS be affected?
· How much will NBN cost?
· When should I start preparing?

DOWNLOAD NOW!

Ray Shaw

joomla stats

Ray Shaw ray@im.com.au  has a passion for IT ever since building his first computer in 1980. He is a qualified journalist, hosted a consumer IT based radio program on ABC radio for 10 years, has developed world leading software for the events industry and is smart enough to no longer own a retail computer store!