Based in France, Gekko Group is aleading European B2B hotel booking platformthat also owns several smaller hospitality brands.
However, some data from other Gekko Group-owned brands were also exposed.
A B2B hotel booking platform, it also owns many smaller brands.
At the time, Gekko Group was valued at $117 million.
Understanding a breach and whats at stake takes careful attention and time.
We work hard to publish accurate and trustworthy reports, ensuring everybody who reads them understands their seriousness.
Some affected parties deny the facts, disregarding our research or playing down its impact.
So, we need to be thorough and ensure everything we find is correct and true.
When this failed,our team reached out to Gekko Group directly,as well as their GDPR officer.
We duly received a thank you note from AccorHotels, confirming the closure of the leak.
They also informed Gekko Group accordingly.
Our team viewed databaseentries in numerous languages, originating from many different countries,mostly in Europe.
Below is an example of a reservation made via Teldar Travel, with redacted credit card details clearly displayed.
This could lead toserious losses for the company.
Even if it were possible,recovering any stolen funds would be a long and expensive process.
The contents of the database could also help hackers and cybercriminals target the same companies in other ways.
The information our team viewed could be used in many ways.
For an added layer of protection,use apassword generatorto create the most secure password possible.
We also suggestthoroughly vetting any 3rd party software and contractorsyou use to guarantee theyre following strict data security protocols.
Each detected gap is thoroughly assessed for potential data leakage.
If possible, we will also alert those affected by the breach.
Our team was able to access this server because it was completely unsecured and unencrypted.
The company uses an Elasticsearch database, which is ordinarily not designed for URL use.
[Publication date: 20.11.2019]
yo, comment on how to improve this article.
