Search results

The purpose of this conceptual paper is to underline several issues related to cybersecurity in the hospitality industry; address the importance of evaluating cyber risks, vulnerabilities and capabilities; and provide suggestions for hospitality operators to minimize the damage that cyberattacks could cause. Future research addressing cyber threats is a call to action.

To understand the occurrence and the impact of information security, the researchers reviewed the previous research regarding information security and used the database from Privacy Rights Clearinghouse and collected 76 information security incidents in the US hospitality industry since 2006.

The increasing frequency of data breach incidents from 2006 to 2017 indicates that the issue of cybercrimes has become more critical in the hospitality industry.

This conceptual paper sheds light on the issues of cybersecurity in risk assessment and heightens the necessity of discussing data breach issues in future hospitality research.

本论文旨在提出几项有关酒店行业网络安全的问题, 并指出网络风险评估的重要性、脆弱性、以及能力, 本论文对酒店行业人如何减少网络攻击所带来的损害有着建设性意义。未来科研应该加强对网络威胁方面的研究工作。

为了了解信息安全的缘由和影响, 本论文作者审阅了有关信息安全的文献, 并且借用隐私权咨询中心（Privacy Rights Clearinghouse）的数据库, 采集了自2006年以来美国酒店行业76起信息安全事件, 以进行分析研究。

本论文发现自2006年起至2017年, 数据泄露事件发生频率在与日俱增。此现象表明网络犯罪在酒店行业已经成为越来越严重的问题。

本论文是理论性文章, 其研究结果对风险评估中的网络安全问题有着启示作用, 此外, 本论文还重点提出了未来酒店管理研究方向, 应该着重研究数据泄露问题。

关键词 网络安全 、数据泄露事件 、风险评估 、信息技术 、酒店行业

The paper aims to analyze the impact of cyber attacks on stock returns of companies operating in the hospitality sector. The fast development of information and communication technologies has been posited as both an opportunity and a challenge to the United Nations Global Sustainable Development Goals. Digital technologies are significant tools for sustainable development, but if they are not addressed appropriately, they can potentially hinder the progress toward sustainability. Among negative impacts, it is necessary to consider cyber risk, a major concern today, in particular for industries which work with sensitive data, such as tourism businesses. Hospitality businesses have to adequately manage cyber insecurity and digital privacy issues, to prevent losses and contribute to socioeconomic sustainable growth.

Using event-study methodology, the paper provides empirical evidence on the effect of announcements of 170 information security breaches on the market value of firms operating in the hospitality sector in the past five years.

The study focuses on identifying potential threats of cyber attacks for the economic value of listed companies. The authors find that negative market returns occur following announcements of cyber attacks suffered by hospitality companies. Adequate investments in technology for cyber security and staff training are relevant in the hospitality sector to reduce cyber risk.

The paper contributes to identifying potential threats of cyber attacks for the economic value of listed companies operating in the hospitality sector. The analysis is carried out by collecting an original sample of global cyber attacks from newspaper announcements sourced from the LexisNexis database.

论酒店业的网络攻击：股票市场的反应

信息通讯技术的快速发展, 对UN全球可持续发展战略目标带来机遇和挑战。电子技术对可持续发展起到重要作用, 但是如果它们未被合理使用, 则对可持续性构成潜在威胁。在众多负面影响中, 网络攻击不可忽视, 成为现今重大担忧, 尤其是对于处理敏感数据的行业, 比如旅游产业。酒店业必须具备管理网络安全和处理电子隐私的能力, 以防止损失, 对社会经济可持续增长做出贡献。

本论文分析酒店业内因网络攻击而遭受股票的影响。借用事件分析法, 本论文研究了近五年来, 170项信息安全泄露消息对酒店市场价值的影响。

本论文主要确立了上市公司因网络攻击而受到的经济价值影响。我们发现, 酒店公司在宣布网络攻击后, 其市场收益受到负面影响。充足的网络安全技术投入和人员培训与酒店减少网络攻击有一定的联系。

本论文分析了酒店业中上市公司因网络攻击而带来的潜在经济价值的损失。研究分析样本来自Lexis Nexis数据库中的全球网络攻击的新闻报道。

The purpose of this study is to expand on the existing literature by specifically examining data security incidents within the hospitality industry, assessing origins and causes, comparing breaches within the industry with those of other industries and identifying areas of concern.

A sample of data breach incidents is drawn from the Verizon VERIS Community Database (VCDB). Statistical comparisons between hospitality and non-hospitality industry firms are conducted following the Verizon A4 threat framework.

The results reveal that breaches between hospitality and non-hospitality firms differ significantly in terms of actors, actions, assets and attributes. Specifically, proportions of breaches in the hospitality industry are larger in terms of external actors, hacking and malware, user devices compromised and integrity violations. Additionally, compared to other industries, point-of-sales (POS) system breaches occur at a higher rate in the hospitality industry. The study finds that company size, hacking and malware predict the likelihood of a POS breach.

The study uses secondary data and does not include the entire universe of data breaches.

In the quest to reduce data breach incidents, it is imperative to identify and assess the nature of data breach incidents between industries. Doing so permits the development of targeted industry-specific solutions rather than generic ones. This study systematically identifies differences between hospitality and non-hospitality data security incidents and then suggests areas where hospitality companies should focus future attention to mitigate breach incidents.

本论文延展了现有文献, 检测了酒店业中的数据安全事故, 评估其起因, 比较其他产业和酒店产业数据泄露的区别, 以及找出关键区域。

样本数据为 Verizon VERIS 社区数据库（VCDB）中的数据泄露事件。研究遵循Verizon A4 危险模型, 对酒店业和非酒店业之间事件进行了数据分析比较。

研究结果表明酒店公司和非酒店公司的数据泄露在当事人、行为、资产、和属性方面, 有着很大不同。其中, 酒店业中的数据泄露比例在外部因素、黑客、病毒、用户端失灵、和违反道德方面比较大。此外, 相对其他产业, POS系统在酒店产业中的数据泄露概率较高。本论文发现公司规模、黑客、和病毒对POS数据泄露的影响有着重大决定作用。

本论文使用二手数据, 并未检测整体数据泄露数据。

为了减少数据泄露事件, 产业之间数据泄露事件属性的认定和评价至关重要。因此, 可以针对具体产业具体事件制定出特定的解决方案。本论文系统上指出了酒店和非酒店业的数据安全事件的区别, 以及指出哪些方面, 酒店业应该重点关注, 以减少未来数据泄露事件。