Trustwave, a prominent cybersecurity provider, has unveiled a detailed study highlighting the unique cybersecurity challenges faced by the hospitality industry. The report, titled “2023 Hospitality Sector Threat Landscape: Trustwave Threat Intelligence Briefing and Mitigation Strategies,” delves into the specific threats and risks that entities within the hospitality sector, ranging from hotels to cruise ships, encounter. The research by Trustwave SpiderLabs reveals the methods employed by threat groups, including brute forcing, exploiting known vulnerabilities, and attacking open ports.
The hospitality industry, integral to the daily lives of countless individuals, presents a vast and intricate cybersecurity threat landscape. A staggering 31% of hospitality entities have experienced a data breach, with 89% of these being affected multiple times within a year. Although the financial impact of a breach in hospitality ($3.4M) is less than the overall industry average ($4.4M), the reputational damage can be profound given the sector’s competitive nature.
Kory Daniels, Trustwave’s Chief Information Security Officer, emphasized the unique challenges the hospitality industry faces, such as the adoption of contactless technology and the constant influx of customers and staff. The report offers invaluable insights for security leaders in the hospitality realm, presenting a holistic view of threats and suggesting specific strategies to enhance defenses.
Key findings from the report include:
- The MOVEit RCE vulnerability is a prime exploit used against hospitality clients, with a notable rise in Clop ransomware attacks.
- 50% of email-borne malware attachments are HTML files, often used in phishing.
- 26% of all incidents reported were due to brute force attacks, where weak passwords were exploited.
The study also touches on emerging trends like Generative AI and contactless technology, both of which offer unique cybersecurity implications. Additionally, the hospitality sector’s reliance on third-party vendors and its diverse workforce present distinct challenges.
Source: Business Wire
To mitigate potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net or you can try your self using check.website.