Travel booking sites leak

A hotel software provider has exposed the personal data of millions of guests around the world after misconfiguring an AWS bucket, dating as far back as 2013, according to a new report from Website Planet.

Among the leaked data were full names, email addresses, national ID numbers and the phone numbers of hotel guests. For hundreds of thousands of individuals card booking details including card number, cardholder’s name, CVV and expiration date were also exposed.

Many of the top online travel agent sites including Agoda, Expedia, Booking.com and Hotels.com use this service platform.

Read more here.