Keyloggers Found on Many Hotel Business Center Computers

Bad news business and vacation travelers, those free computers that are in many hotel business centers have been infected with keylogger malware.  This means that whatever you are typing while sitting at one of these publicly accessible computers is being sent to a cyber-criminal somewhere.  Hopefully you are savvy enough to NOT be doing online banking or checking your brokerage accounts on these systems, but even just checking your email can open you up to having that account hijacked and your contact list harvested for spamming.

This information was reported by the US Secret Service and National Cybersecurity and Communications Integration Center (NCCIC).  Arrests have been made in the Dallas and Fort Worth area, where several hotel chains computers were affected by criminal activity.  Hotels across the US have been advised to have their computer systems checked for keyloggers or other similar exploits.

If you are in the habit of using public access computers in hotels, coffee houses, or public libraries, just be aware that the person who used it before you might just be a cyber-criminal.  These systems are not a good place to log onto any of your personal online accounts.  When I travel I am in the habit of taking my laptop with me, as inconvenient as that can be.  If you travel frequently, and you have an online life, then you really need to be traveling with your own device – a laptop, tablet, or smartphone that you can have some assurance is secure.


About the Author:

Cybersecurity analyst, pen-tester, trainer, and speaker. Serving small business owners in the St Paul, Minneapolis, and western Wisconsin area since 2001. Cybersecurity and hacking have been a passion of mine since I entered the computer and networking business in 2000. I hold several cybersecurity certifications including Certified Information Systems Security Professional (CISSP), Certified Advanced Security Pratitioner (CASP), and Certified Ethical Hacker (CEH). Other computer industry certifications include A+, Network+ and Microsoft Certified System Engineer (MCSE). As Cybersecurity Analyst at The WyzCo Group, I help our clients experience high levels of security on their computers, networks, and websites. In addition to consulting on security products and services, we also conduct security audits, vulnerability assessments and full penetration tests. We also work with companies and organizations that need to certify compliance with regulations such as PCI-DSS (credit card processing), HIPAA/HITECH (medical records), and GLBA. We also provide Cybersecurity Awareness Training for clients and their employees. I am a frequent speakers at cybersecurity conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference, the (ISC)2 World Congress, and the ISSA International Conference, and many local community organizations, Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2008.

Add a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.