• solrize@lemmy.ml
    link
    fedilink
    English
    arrow-up
    4
    ·
    2 months ago

    The hotel check-in system, called Tabiq, is maintained by the Japan-based tech startup Reqrea. According to its website, Tabiq is used in several hotels across Japan and relies on facial recognition and document scanning to check guests in.

    They left an S3 bucket open.

    • Wispy2891@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      2 months ago

      this is why other s3 compatible servers like garage intentionally ignore admin commands to leave a bucket open, it’s simply not possible as there’s no valid reason except developer laziness

    • VivianRixia@piefed.social
      link
      fedilink
      English
      arrow-up
      1
      ·
      2 months ago

      This is surely a joke post, please tell me this is not actually the cause… *reads article*… it’s the cause… *sigh*

  • HasturInYellow@lemmy.world
    link
    fedilink
    English
    arrow-up
    4
    ·
    2 months ago

    What!? One of the thousands of separate and individually “secured” systems that you have to give your information to on a daily basis failed? But how could this be? Everyone knows having 1747627994 points of possible failure is the only way to ensure digital security!

    • pingu@piefed.europe.pub
      link
      fedilink
      English
      arrow-up
      0
      ·
      2 months ago

      Sovereign identity and Solid are the way. But governments will have to play a role in large scale implementation.

      For some reason people seem to trust commercial organizations with misaligned incentives over governmental bodies.

      • Electricblush@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        2 months ago

        To be fair, some people have less reason to trust their government with their data, then others.

        There are varying degrees of trust in authorities in the world.

        For nations with high confidence and trust in the authorities, this feels like a no-brainer.

  • Bieren@lemmy.today
    link
    fedilink
    English
    arrow-up
    1
    ·
    2 months ago

    I’ve gotten to the point I don’t care anymore. All of my data and info is already out there. Been leaked and sold by so many times and waya. Not like I can do anything about it. Just hope that of the millions of other id’s out there mine isn’t the one someone uses.

    • Electricblush@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      2 months ago

      No. A properly managed eid system like the EU digital wallet would be better.

      You would not hand over any document to the hotel. They would ask the central authority server if you are who you claim. You would get a prompt to confirm that you allow the hotel to confirm your identity. The server would respond, yes you are indeed that person. End of transaction.

      No data would be left to whatever security standard (or lack there of) that the hotel has. No critical documents stored on their end.

      • NewNewAugustEast@lemmy.zip
        link
        fedilink
        English
        arrow-up
        0
        arrow-down
        1
        ·
        edit-2
        2 months ago

        Whatever happened to just here is my money I will stay here and be done? Why does the hotel need to give a shit who i am that I am staying?

        • Electricblush@lemmy.world
          link
          fedilink
          English
          arrow-up
          1
          ·
          edit-2
          2 months ago

          Laws requiring Hotels identify their guests. This is a requirement for several reasons.

          Some of which are visa requirements for foreign visitors, making it harder to use fake guests to launder money, in addition to several other uses of hotels by criminals (including prostitution) leaving a paper trail for authorities to follow up on.

          • NewNewAugustEast@lemmy.zip
            link
            fedilink
            English
            arrow-up
            0
            arrow-down
            1
            ·
            2 months ago

            Been awhile since I have been to the EU, that sounds like something stupid they would do. I imagine it would be France and Germany mostly.

            Several countries I have been to recently I haven’t even talked to anyone at the hotel, which is nice. I don’t have to see the front desk at all, and the bell hop doesn’t care.

            Again, why can’t I just pay and stay? It may be laws, but I am sick of this bullshit. People should be able to travel without state violence used against them.

            And as we can see here, gathering information by the hotel is a horrible idea.