One of the affected facilities is the Murowaniec Shelter in Hala Gąsienicowa. On Saturday, December 13, its representatives published a warning on Facebook, stating that third parties impersonate the shelter and send fake messages to guests containing links to alleged payments.
Read also: End of the year in finance and taxes. Check out what you can't miss
The rest of the text below the video
Customer data in the hands of criminals? There are warnings
The shelter's entry emphasized that the fraudsters obtained customers' contact details as a result of hacking into one of the servers of the operator of the accommodation booking system used by the facility. “Tygodnik Podhalański” found out that this was not an isolated case.
Cybercriminals also allegedly took over information about the guests of Willa Roztoka in Bukowina Tatrzańska and the Eco Tatry Hotel in Kościelisko. Both facilities reported the incident on social media, urging customers to be especially careful. Visitors are asked to carefully check the e-mail addresses of message senders and under no circumstances click on suspicious links.
Read also: When will Grupa Azoty recover? “The management knows this horizon” [WYWIAD]
Not just email. Fraud also via instant messaging
The Sekurak website, which deals with network security, also raised alarm about the matter. One of the readers told the editorial office that in her case the criminals contacted her not via e-mail, but via WhatsApp.
Zakopane
|
Maksym Harbar / Unsplash
According to information provided by Sekurak, citing the operator of the KWHotel reservation system, personal data of hotel customers may have been leaked as a result of the attack. This includes: for information from reservations made both directly and through websites such as Booking.com or other intermediaries. The intercepted data may have included: names and surnames, telephone numbers, e-mail addresses and dates of stay. The criminals also allegedly gained access to the passwords of system users, i.e. the hotels themselves.
No confirmation of financial leak
However, Karol Wagner from the Tatra Chamber of Commerce pointed out in an interview with “Tygodnik Podhalański” that the data leak itself has not been officially confirmed yet. He also emphasized that there is no information about the interception of payment card data or customer bank account numbers, which significantly limits the scale of potential financial losses.
Nevertheless, the TIG representative calls for extreme caution. In the coming days, guests should avoid paying for accommodation using links sent in messages or other online tools. — The safest way is to return to traditional forms of payment, i.e. regular transfers to the account number, after prior telephone verification with the facility – recommends Wagner.
