Ransomware Attacks on Travel Companies Spread, Sparking Complacency Fears
Photo Credit: Illustration of computer hacking. Ransomware attacks on Carnival, CWT, Garmin, and Travelex suggest that the travel sector might be underestimating its security risk exposure. Adobe
Skift Take
The travel sector should pledge to never pay ransoms to hackers. But it either can't or won't. So the ransom payments will go on, helping to fund the criminal development of evermore spectacular attacks.
A spate of ransomware attacks on travel companies worries some security professionals, who believe the criminals are upping their games. Some criminal groups may be plowing part of the payouts they get from shakedowns into launching more sophisticated attacks.
Carnival discovered on August 15 it had become the latest travel industry victim of ransomware, software that holds a victims' devices and data hostage while the perpetrators demand money.
Carnival, one of the world's largest cruise operators, warned investors this week that criminals may have accessed the personal details of its customers and staff. The company said hackers accessed data in a part of an IT system for one unnamed brand. Carnival's brands include Cunard, Princess, and P&O.
CWT, the travel management giant, reportedly paid $4.5 million in ransom last month to hackers who had taken sensitive corporate files hostage and took about 30,000 computers offline.
Garmin, the maker of navigational systems, su
