Hotel Internet Security

[Guest greatness]

Here is a blog on hotel WI-FI security. I know many escorts and clients frequently use hotel wifi so I hope this helps.

 

 

http://blogs.csoonline.com/warning_many_hotel_access_points_are_not_secure

[seaboy4hire]

I've suspected this for a while and I am sure the techies were aware of this. So my question is what exactly can one do to protect themselves. I think that as far as I know am pretty secure. Boobers is fairly tech savy and a friend of ours is a techie nerd and makes sure we are up to date on stuff to protect against hackers and what not. But not everyone has these resources at their finger tips or speed dial.

 

Hugs,

Greg

[Guest RianB]

Greatness, you trying to scare us with another warning

 

 

Thats good looking out though, unsecured networks should be used with caution. Im not a tech, but doesnt setting the internet's location to public (for hotels/coffeeshops) instead of private (home) help prevent stuff like that from happening?

[Guest greatness]

nope

 

Just because it is still hot where I am and I couldn't go to sleep. I am not trying to scare anyone. I guess most clients or escorts will use VPN (Virtual Private Network) provided by their employers if they deal with sensitive materials. You can use your home computer to set up a VPN too if you are a self employed person that deals with sensitive materials a lot. It's not that hard.

 

Even your hotel TVs can be used to get your private information because they are also networked. They know what you are watching and etc. Some security specialists know how to watch movies and play games for free using hotel TVs without even paying for an expensive hotel wireless service. There are hackerbots that can intercept your password and send it to a hacker. What people can do these days are endless. A security specialist once said that we don't have to freak about these kinds of things but be aware of the fact that we are not secure. My point was that some hotels are extremely vulnerable for an attack so consider that when you book a hotel (Do not book a hotel because they provide a free internet service). Not only hotels but other wireless hot spots are also vulnerable too. As long as you are careful you will be fine (I have copied an article to the next post). Just check for https: when you sending your credit card numbers and etc. Make sure check your credit report once in a while. Check your credit card statement from time to time before your billing statement arrives if you think you've been hacked.

 

P.S. Hackers can of course target private homes too.

 

 

 

 

 

 

Greatness, you trying to scare us with another warning

 

 

Thats good looking out though, unsecured networks should be used with caution. Im not a tech, but doesnt setting the internet's location to public (for hotels/coffeeshops) instead of private (home) help prevent stuff like that from happening?

[Guest greatness]

well

 

One of the study authors, Josh Ogle, a Cornell University graduate and founder of IT services company TriVesta, performed on-site testing at 46 hotels in Virginia, North Carolina, Texas, Maryland, Tennessee and Pennsylvania - making sure to hit both tourist and business travel destinations.

 

Ogle tested wireless networks at 38 hotels and wired networks at eight. He found the majority were vulnerable to attacks.

 

“Out of the 38 wireless, I was able to break into 33,” Ogle told SCMagazineUS.com Monday. “And by break into I mean, accept data from someone else's computer that wasn't meant to be on mine.”

 

Ogle used the Linux distribution BackTrack, meant for network testing. In addition, following recommendations of hackers on vulnerability mailing list Full Disclosure, Ogle used a high-power wireless card and high-gain omnidirectional antenna to crack the networks. The setup cost less than $100, he said.

 

Ogle said using this method a hacker can see all unencrypted information coming into and leaving the network -- including passwords, email messages and any web pages people are viewing.

 

Of the hotels compromised, each took about 10 minutes to breach. Some hotel employees inadvertently assisted in the breach by providing passwords and access instructions.

 

“They are extremely unsecure,” Ogle said of hotel wireless security. “I was very disheartened by what I saw. I wasn't surprised, but I was disheartened.”

 

Ogle recommended that all hotels use Wi-Fi Protected Access (WPA) encryption, which requires a password to get on the network and encrypts all data transmitted. Of the hotel networks that Ogle was not able to crack, the majority used WPA encryption

 

For guests, Ogle recommended connecting to the internet using a Virtual Private Network (VPN), having updated anti-virus and firewall software and making sure each secured website starts with “https://” rather than “http://”.

 

The danger of not securing a hotel's network is that a malicious user could gain access to guest information or other confidential files, Domenic Carmona, director of IT at the W Dallas-Victory hotel, told SCMagazineUS.com Monday.

 

I've suspected this for a while and I am sure the techies were aware of this. So my question is what exactly can one do to protect themselves. I think that as far as I know am pretty secure. Boobers is fairly tech savy and a friend of ours is a techie nerd and makes sure we are up to date on stuff to protect against hackers and what not. But not everyone has these resources at their finger tips or speed dial.

 

Hugs,

Greg

[+ ArVaGuy]

This is an issue I’ve been aware of for many years. I work in the conference management industry and you’d be amazed at how poorly hotels manage internet security. This article only touches the surface. The main trouble is that there is no hospitality industry wide standard for wireless internet. Most hotels are franchises and consequently it’s up to the individual owners to determine the level services and security they are willing to provide. Usually it’s the low bidder that’s going to get the internet contract for a hotel.

 

Another area of note, all pharmaceutical companies, most financial services firms, and a good many defense contractors will not allow their employees to use hotel (or other) wireless networks. This is to protect company data obviously. These companies will only allow employees to utilize hard wired connections in sleeping rooms. In other instances some companies will go so far as to install their own wireless networks in the public areas of a hotel during a conference to ensure acceptable levels of security.

 

When I’m conducting a hotel site inspection one of the criteria for sleeping rooms includes wired versus wireless connections. I’d estimate that about 45% of first class hotels offer both connection types. The lower down the tier of ratings the more likely it’s only to be one option for sleeping room connection. Retrofitting an older property to wired connections is expensive, there’s that low bidder thing again, and consequently they are more likely to go with the wireless option.

 

My preference is to use hardwired connections and my organization has a VPN. However, a determined hacker is going to find a way around any security measure so diligence is a necessity.

[Guest greatness]

Btw

 

If you stay at Radisson frequently here is an open letter from Radisson.

 

OPEN LETTER TO RADISSON® GUESTS

August 19, 2009

To Radisson® Hotels & Resorts guests:

 

Radisson values your business and respects the privacy of your information, which is why we wish to inform you that between November 2008 and May 2009, the computer systems of some Radisson® hotels in the U.S. and Canada were accessed without authorization. This unauthorized access was in violation of both civil and criminal laws. Radisson has been coordinating with federal law enforcement to assist in the investigation of this incident. While the number of potentially affected hotels involved in this incident is limited, the data accessed may have included guest information such as the name printed on a guest’s credit card or debit card, a credit or debit card number, and/or a card expiration date.

 

We recommend that you review your account statements and credit reports closely. To the extent there is any suspected unauthorized card activity, it should be reported to the bank that issued your credit card, as well as proper law enforcement authorities, your state attorney general’s office, or the Federal Trade Commission. Please also visit our website at http://www.Radisson.com/openletter/ for instructions on how to receive free credit monitoring for one year.

 

Radisson values guest privacy and deeply regrets this incident occurred. Working with law enforcement and forensic investigators, Radisson is conducting a thorough review of the potentially affected computer systems, and has implemented additional security measures designed to prevent a recurrence of such an attack and to protect the privacy of Radisson’s valued guests. The company also is working closely with major credit card suppliers and law enforcement to ensure the incident is properly addressed.

 

For further assistance regarding this incident, please visit Radisson at http://www.Radisson.com/openletter/ or call (866) 584-9255 between 7 a.m. – 11 p.m. CST daily. Radisson is focused on delivering guest satisfaction and value for our guests and is committed to doing everything we can to resolve this issue expediently and thoroughly to reinforce your confidence.

 

Sincerely,

 

Fredrik Korallus

Executive Vice President & Chief Operating Officer

Radisson® Hotels & Resorts