Hotels too often leave people vulnerable to identity theft

  • By Christopher Elliott Syndicated Columnist
  • Friday, April 19, 2013 6:40pm
  • Life

Several days after Traci Fox visited a small independent resort in the Catskill Mountains, she received an unexpected call from a shoe store.

Where did she want it to ship the $400 worth of pricey sneakers that she’d ordered?

Just one problem: She hadn’t purchased any footwear. As Fox, a college professor from Philadelphia, Pa., rummaged through her pocketbook to find her credit card, the phone rang again.

“It was Coach handbags asking if I wanted the $750 worth of handbags shipped to a different address,” she says.

Calls to her credit card revealed another bogus charge for $7,500 at Home Depot.

“Of course, I wasn’t liable for anything,” she said. “But it was still scary and frustrating.”

Fox believes that her hotel may have compromised her credit card information. At least one government agency shares her concerns.

Last summer, the Federal Trade Commission sued Wyndham Hotels, alleging that the company had failed to protect its customers’ personal information.

As a result, the FTC claims, hundreds of thousands of credit card numbers fell into the wrong hands, leading to millions of dollars in fraud-related losses. Wyndham denies any wrongdoing and is fighting the suit.

“Data security is becoming an issue of significant importance in the hospitality industry,” said Mark Schreiber, an attorney specializing in hospitality law at the Boston firm of Edwards Wildman Palmer.

He cited an increase in hacks and malware attacks, which frequently target hotel systems because they’re a rich source of personal information.

Identity theft expert John Sileo said that there’s another reason hotel guests are vulnerable to having their personal information stolen: They’re easily distracted.

“We just don’t pay attention to the details when we’re running through airports and staying in unfamiliar places,” he said. “It’s easier to miss something and to be careless.”

Data breaches can happen anywhere within a hotel. Ann Azevedo, an engineer who lives in Hartford, Conn., checked out of a chain hotel in Seattle not long ago.

A few days later, someone used her card to buy gas on the other side of the country, she says. The likely source of the breach was an ATM machine at the hotel.

“I canceled the credit card,” she said. “And I’ll never use a hotel ATM again.”

Data privacy expert Edward Hasbrouck said, “Credit card theft is much easier — and more likely — through large-scale hacking,” he said.

In the FTC’s lawsuit, for example, the agency alleges that Wyndham failed to take security measures such as requiring employees to generate complex user IDs and passwords and to properly install firewalls and network segmentation between the hotels and the corporate network, according to the agency.

It’s difficult to take preventive steps, say experts. Apart from paying with cash, there’s almost no way to tell whether a hotel will treat your personal information with care or whether it will leave a backdoor or firewall unguarded for hackers to steal your credit card information.

Large hotel chains will post their data protection policies online, “but they won’t make much sense to the average consumer,” said Richard Alderman, who directs the Center for Consumer Law at the University of Houston Law Center.

“I think consumers should continue to deal with hotels as they have in the past, knowing that almost all hotels are as concerned with customers’ privacy as are the customers,” he added.

The problem may run deeper than the theft of credit card numbers, however.

The personally identifiable information in your guest profile, such as your home address, your license plate number and your date of birth, which is attached to your reservation, can end up in the hands of a third party that offers little or no warranties about how it will protect your data.

Apart from having the hotel industry tighten security, the best way to address data theft may be through changes in consumer law.

A good starting point might be to tell consumers what information is being collected from them and passed along to third parties, Hasbrouck said.

“Most travelers would be shocked to know how many other companies the hotel may have given (the information) to in the normal course of their business,” Hasbrouck said.

Christopher Elliott is the ombudsman for National Geographic Traveler magazine and the author of “Scammed.” Read more travel tips on his blog, www.elliott.org or email him at celliott@ngs.org.

&Copy; 2013 Christopher Elliott/ Tribune Media Services, Inc.

Talk to us

> Give us your news tips.

> Send us a letter to the editor.

> More Herald contact information.

More in Life

A male Anna’s hummingbird chirps as it perches in a thorny bush Wednesday, March 30, 2022, along the water at the Port of Everett in Everett, Washington. Anna’s hummingbirds, which measure around 4 inches long and weigh only a few grams, are the most common of four local species and the only hummingbird to remain year-round in the Pacific Northwest. (Ryan Berry / The Herald)
Adopt A Stream hosts hummingbird ecology class

Western Washington University instructor Greg Green will lead a class on hummingbirds on Saturday at the Northwest Stream Center.

“9 to 5” the musical will have shows from Nov. 18 to Feb. 1 at Village Theatre in Everett. (Screenshot from Village Theatre YouTube channel)
9 to 5, Terry Fator, #IMOMSOHARD and more

Music, arts and more coming to Snohomish County

Oven-Roasted Chicken Shawarma. Food stylist: Hadas Smirnoff. (Linda Xiao/The New York Times)
Five weeknight dishes: Creamy butternut squash noodle soup, shrimp and bacon burritas and more

Here’s something I’ve never done until now: plan ahead for the holidays.… Continue reading

The back patio area and deck on Oct. 23, 2025 in Mukilteo, Washington. (Olivia Vanni / The Herald)
$6 million buys ‘Wow’ and a gleaming glass mansion in Mukilteo

Or for $650,000, score a 1960s tri-level home on Easy Street in Everett. Dishwasher included.

The 2026 Mazda Mazda3 compact hatchback has seating for five passengers.
Mazda Mazda3 hatchback is fast, fun and practical

There’s a sedan version too, if you’d rather. The same premium-level qualities are on board with both.

Silas Machin, 13, uses a hand saw to make a space for a fret to be placed during class on Oct. 7, 2025 in Lake Stevens, Washington. (Olivia Vanni / The Herald)
Kids at play: Lake Stevens middle-schoolers craft electric guitars

Since 2012 students in Alex Moll’s afterschool club have built 100s of custom and classic guitars.

Typically served over rice, gumbo is made with chicken, sausage and the Creole “holy trinity” of onions, bell peppers and celery. (Gretchen McKay/Pittsburgh Post-Gazette/TNS)
Easy, roux-less gumbo features Creole spices, chicken and sausage

Many family dinners are planned ahead of time after pulling a delicious-sounding… Continue reading

Join Snohomish PUD in preparing for storm season

October is here and the weather has already displayed its ability to… Continue reading

Absolute Zero Earthstar Bromeliad was discovered in a crypt! Its foliage is black with ghostly white striping with sharp edges – be careful! (Provided photo)
The Halloweeniest plants around

This magical month of October is coming to a close, accompanied everywhere… Continue reading

The 2025 Volkswagen ID. Buzz in two-tone Energetic Orange and Candy White paint.
2025 Volkswagen ID. Buzz is an irresistible throwback

The new Microbus maintains charm while piling on modern technology and special features.

These crispy, cheesy chorizo and potato tacos are baked in the oven to achieve an extra crunch. (Post-Gazette)
Crispy oven chorizo and potato tacos are social media darlings

I’m not alone when I say I could eat tacos every day… Continue reading

Marysville Pilchuck High School mural artists Monie Ordonia, left, and Doug Salinas, right, in front of their mural on the high school campus on Oct. 14, 2025 in Marysville, Washington. (Olivia Vanni / The Herald)
Tulalip artists unveil mural at Marysville Pilchuck High School

Monie Ordonia hopes her depictions of Mount Pilchuck and Pilchuck Julia bring blessings and community.

Support local journalism

If you value local news, make a gift now to support the trusted journalism you get in The Daily Herald. Donations processed in this system are not tax deductible.