Thursday, June 28, 2012

Hotel chain sued for customer data breach

U.S. regulators filed a complaint against Wyndham Worldwide Corp and three subsidiaries on Tuesday, alleging that a failure by the hospitality company to safeguard consumers' personal information led to more than $10 million lost to fraud.

  1. Don't miss these Travel stories

    1. Room with view and giant bedside clock

      Ghent, Belgium, has unusual rental built around the top of the clock tower of the city?s Sint-Pieters train station ? part inn, part art exhibit.

    2. Survey: Low-cost airlines tops in customer satisfaction
    3. Man without hands not allowed to ride coaster
    4. Highbrows hit the high seas with NPR, PBS
    5. London's secret small hotels

The Federal Trade Commission said repeated failures to secure consumer data led to hundreds of thousands of consumers' payment card information being exported to an Internet domain address registered in Russia.

Wyndham, which operates several hotel brands, including the value-oriented Days Inn and Super 8, is one of a large number of organizations that acknowledged in the past three years that they had been hacked by people seeking either financial gain or intellectual property.

Related: 5 ways to protect your computer while traveling

Other victims have included entertainment giant Sony , the International Monetary Fund, Google, Lockheed Martin and Citigroup.

In its complaint, the FTC said fraudulent charges on Wyndham's consumer accounts totaled more than $10.6 million following three data breaches in less than two years. The breaches occurred in April 2008, March 2009 and in late 2009, it said.

"Even after faulty security led to one breach... Wyndham still failed to remedy known security vulnerabilities; failed to employ reasonable measures to detect unauthorized access; and failed to follow proper incident response procedures," the FTC said.

Barry Goldschmidt, a vice president for investor relations at Wyndham, said the company offered affected customers credit-monitoring services while also strengthening its security systems.

Wyndham was unaware of any customers losing money because of the breach, he said.

Related: Cruise line data breach exposes 1,200-plus passengers

The FTC brought the complaint based on its belief that Wyndham violated its own privacy policy by failing to safeguard data. That failure, the FTC said, violated the FTC Act which bars unfair and deceptive practices.

In its complaint, the FTC asked the court to require Wyndham to live up to its privacy policies, provide restitution or refund money that customers paid and to pay the FTC's costs in filing the lawsuit.

The case is Federal Trade Commission v. Wyndham Worldwide Corporation et al, U.S. District Court for the District of Arizona, case no. 12-cv-1365.

(c) Copyright Thomson Reuters 2012. Click For Restrictions - http://about.reuters.com/fulllegal.asp

cirque du freak eric cantor eric cantor pope joan pope joan paul pierce strawberry festival

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.