Marriot revealed in a court case around a massive 2018 data breach that it had been using secure hash algorithm 1 and not the much more secure AES-1 encryption as it had earlier maintained.

  • cm0002@lemmy.world
    link
    fedilink
    English
    arrow-up
    19
    ·
    7 months ago

    Many years ago, back when Marriot locked their non-shit WiFi behind a paywall I was able to get around it by changing some values (Iirc, I literally changed the price that was sent to the server to 0.00) with TamperMonkey lol no server side validation, no lookups, no checksums no verification of any kind lmao

    So this doesn’t surprise me in the least