Radisson Rewards is the latest company to reveal that sensitive private information was exposed in a data breach affecting loyalty members. On October 1st Radisson Rewards identified that a data breach occurred on September 11st, Radisson begun notifying affecting customers on 10/30 and will continue to do so today.
- The following information was accessed: member name, address (including country of residence), email address, and in some cases, company name, phone number, Radisson Rewards member number and any frequent flyer numbers on file.
- The following information was not accessed: credit card, password information, previous or future hotel stays/reservations
Radisson has declined to provide information stating how many loyalty members are affected, simply stating that a ‘small percentage’ was affected. I’ve said this before and I’ll say this again, until the punishments for data breaches are increased they will continue to occur at an alarming rate. Companies are not taking cyber security seriously enough, especially when you think of the damage that can be done to an individual when identity theft occurs. In this case it’s simply unacceptable that Radisson found out about this issue on October 1st and is only letting affected members know almost a month after the fact (and a month and half after the data was actually exposed).
