I recently had the pleasure of booking a night away from it all at a nice little hotel in the Lake District. As I’m sure most people with an interest in security do, I couldn’t help but shudder at the word ‘Secure’ being plastered across the site. Prompting some incredibly quick poking around, I easily discovered a method of extracting the personal and sensitive data of thousands of customers that had used the site before me. Not only could this kind of information allow an attacker to launch an effective and convincing phishing scam, there are other concerns too.
more here..........https://scotthelme.co.uk/hotel-hippo-insecure/
more here..........https://scotthelme.co.uk/hotel-hippo-insecure/