If you've stayed at a Clarion, Comfort Inn, EconoLodge, Quality Inn, Rodeway Inn or any of half a dozen other hotel and motel chains lately, you may see an uptick in spam and phishing scams.
That's because Choice Hotels, the parent organization of those franchise chains, suffered a data breach in which records of 700,000 guests were stolen, according to Comparitech, which reported the breach today (Aug. 13).
To prevent this breach from affecting you, make sure you have robust antivirus software running on your computer, even if it's a Mac, because good AV suites can protect against phishing attacks and filter spam.
You'll have to watch out for SMS text-message phishng ("smishing") and voicemail phishing ("vishing") as well, and that's going to have to be up to you.
Comparitech worked with independent security researcher Bob Diachenko, who specializes in finding unprotected databases online.
On July 2, two days after this database (which Choice Hotels said was run by a third-party vendor) was indexed by a search engine, Diachenko checked it out. But someone else had beaten him to it, copied the data and left a ransom note asking for 0.4 bitcoin, or about $4,300 at today's exchange rates.
Unfortunately, we don't know how far back the data goes, so we can't give a time window during which someone who checked into a Choice Hotels franchisee might have been affected.
The database was apparently being used for testing purposes, so the number of compromised accounts is far lower than the total number of guests who've stayed in a Choice Hotels-affiliated establishment in the past few years.
Choice Hotels "currently franchises more than 7,000 hotels, representing nearly 570,000 rooms, in more than 40 countries and territories" worldwide, the company website states.
