By testing over 1,500 hotels in 54 countries, a Symantec researcher discovered that two out of three (67%) hotels inadvertently make hotel reservation information available to third-parties such as advertisers, social media platforms and data aggregators.
The leaked data includes things like names, addresses, phone numbers, passport numbers and the final four digits of credit card numbers. Reservations are being shared by hotels of all sizes and price ranges. According to Candid Wueest of Symantec, “[t]he information shared could allow […] third-party services to log into a reservation, view personal details, and even cancel the booking altogether.”
Read more: Majority of Hotel Websites Leak Guest Booking Info