She then said yes it was! Where is my e mail saying so. Nonsense, booked on say so on phone earlier. ![]() Was told I have to accept the holiday for it to be booked. So, having coped with family issues in between, I called them again (always fun). If you say you are ringing then flippin' well do it!!! We rearranged holiday, upgrade to 4* with facilities I wanted, new fly date, new island even. Had a shout that original guy was happily in work taking new business and decided I could hang for however long it suited him. To be fair after the first advisor got panicky I was put through to both original advisor and super. Said suggested hotel was not the same and wanted money back. Was still waiting at 11.30 so called them. I was out so he told hubby he would call next shift starting 10am in the morning. Next day advisor called to say that hotel is booked up and suggested another. Got immediate quote (I will do your very good price) then confirmation. Booked it although a bit unhappy it was more money than expected but that can happen elsewhere. Researched long and hard as I'm picky about hotel. Price went up from advertised but still seemed reasonable. Although I understand this is not Teletext, they took 2 months to respond with a measly offer of "Goodwill" stating they were basically not liable as they are just an agent! I would rather stay in the UK than user this company every again! Their customer service is rubbish and they do not "BOOK" or GUARANTEE your booking at all. To make it worse we were then delayed 3 hours coming home. The location was poor and miles from where we wanted to be and was unable to get to by transport. The hotel facilities were fine but the security was very poor (twice someone walked into our room with their own keys) and the noise was horrendous. 3 days before we flew the hotel changed our accommodation with NO EXPLANATION whatsoever! we had no choice but to accept the new location which was not ideal as we only had 3 days to go and had booked time off work and made plans. I had stayed at the hotel before so knew what to expect and couldn't wait for our short break. That someone else has your data does not remove your accountability for it it just changes (and expands) the footprint which needs to be considered within a security strategy.So me and my friend booked a quick getaway to Spain and was really looking forward to it. ![]() ![]() It will be very interesting to see how the ICO respond.Ī final point which this incident highlights is, again, the importance of 3rd party security however good a company’s security is, vulnerabilities within suppliers and vendors remain highly significant. 532,000 records is not the biggest of leaks but that will be of no comfort to those individuals affected this is a not insignificant breach. Ironically, this may affect Teletext themselves more than the hackers to begin making contact with their affected clients they will have to find their own way of extracting the details – and they will probably find that more difficult than do the attackers. It might be slightly more time consuming but that is all. Nor should we be complacent that extracting data from audio files is somehow difficult it isn’t. It is also a treasure trove for anyone who wants to build more sophisticated and damaging attacks – it’s an intelligence feed for hackers this simple leak could spawn many more and worse. It all has a dollar value and is saleable online (and will be for sale already). Companies have exactly the same responsibility to secure data in the cloud as they do with the data they hold on premise.Īside from the painfully obvious “please don’t store unencrypted data in unencrypted data stores and be at all surprised when it leaks”, this makes the point very well that the actual medium in which data is stored is irrelevant the fact that these were voice files makes no difference to the value of the data to hackers. ![]() All of these details are considered to be Personally Identifiable Information (PII) under GDPR and placing the calls in the cloud does not mean the data it is no longer the organisation\’s responsibility. In this case, Teletext have put the names, email addresses, home addresses, phone numbers and dates of birth of more than 200,000 customers at risk. Cloud services are is not secure by default, and privacy settings on cloud storage services have to be configured to protect the sensitive data they hold. However, Teletext is an example of why companies should not become complacent with their use of the cloud. In fact, our own research has found that 61 percent of security professionals believe the risk of a security breach is the same or lower in cloud environments compared to on-premise. The use of cloud services such as Amazon Web Services have become ubiquitous in recent years, and organisations – such as Teletext Holidays – are much more comfortable trusting sensitive data to the cloud.
0 Comments
Leave a Reply. |