Close Menu
TechTost
  • AI
  • Apps
  • Crypto
  • Fintech
  • Hardware
  • Media & Entertainment
  • Security
  • Startups
  • Transportation
  • Venture
  • Recommended Essentials
What's Hot

Meta enters the crowded AI coding fray with Muse Spark 1.1

Elon Musk says X will send DMs when posts you’ve interacted with are fixed

AI chip maker SambaNova raises $1 billion at $11 billion valuation, 5 months after last mega round

Facebook X (Twitter) Instagram
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer
Facebook X (Twitter) Instagram
TechTost
Subscribe Now
  • AI

    Meta enters the crowded AI coding fray with Muse Spark 1.1

    13 July 2026

    Can AI answer the $3 trillion question?

    12 July 2026

    OpenAI shuts down Atlas, but AI browser ambitions keep growing

    12 July 2026

    OpenAI bets on families as ChatGPT goes deeper into households

    11 July 2026

    Meta removes controversial AI feature on Instagram after backlash

    11 July 2026
  • Apps

    Elon Musk says X will send DMs when posts you’ve interacted with are fixed

    13 July 2026

    ‘Slow-cial’ Roost app forces you to slow down to the speed of a carrier pigeon

    12 July 2026

    Character.AI is entering the micro-drama arena with its own productions, but there’s a twist

    12 July 2026

    A new app, HyperTexting, turns the open web into a social media scrolling-like stream

    11 July 2026

    Apple is suing OpenAI for alleged trade secret theft

    11 July 2026
  • Crypto

    Venice AI goes unicorn with $65M Series A as first privacy AI platform takes off

    1 July 2026

    Crypto Exchange OKX wants AI agents to hire and pay each other

    30 June 2026

    Startup Battlefield 200 applications close today

    27 May 2026

    5 days left: Save up to $410 on Disrupt 2026 passes

    25 May 2026

    As crypto cools, a16z crypto raises $2.2 billion in capital

    6 May 2026
  • Fintech

    Don’t want to invest in Elon Musk? Two new ETFs expressly exclude him

    10 July 2026

    India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

    28 June 2026

    Early Bird pricing ends tonight for the Founder Summit

    26 June 2026

    4 days left to save up to $190 on Founder Summit 2026

    23 June 2026

    Robinhood’s note on 10% layoffs shows that blaming AI doesn’t cut it

    17 June 2026
  • Hardware

    Meta’s new AI chips will begin production in September

    12 July 2026

    This slush machine was a lifesaver during the New York heat wave

    12 July 2026

    Dumb Co dared me to exchange my iPhone for a hacked phone

    11 July 2026

    SK Hynix raises $26.5 billion in largest foreign public IPO in US history, set to build new fabs in US

    11 July 2026

    After Apple, smartphone manufacturing boom in India enters new phase with Vivo JV

    10 July 2026
  • Media & Entertainment

    Netflix could be planning “always on” live TV channels.

    11 July 2026

    Netflix is ​​dealing with shorter video content with its new set of publisher deals with Variety and others

    8 July 2026

    Netflix invented binge watching. Now he may be over it.

    7 July 2026

    New Google ad imagines a Declaration of Independence written with the help of artificial intelligence

    4 July 2026

    Cloudflare’s new policy pushes AI companies to pay for publishers’ content

    1 July 2026
  • Security

    US cybersecurity agency CISA had to create the incident guide during the incident, the agency reveals

    11 July 2026

    Florida ransomware dealer convicted of helping ransomware gang extort US companies

    10 July 2026

    Hacktivists call out Trump by hacking and defacing US military websites

    8 July 2026

    Canada’s spy agency says it hacked drug traffickers, extremists and a ransomware gang last year

    6 July 2026

    Politician who investigated abuses of wiretapping software on his phone with Pegasus spyware

    3 July 2026
  • Startups

    AI chip maker SambaNova raises $1 billion at $11 billion valuation, 5 months after last mega round

    12 July 2026

    Hot French startup ZML releases free product to speed up inference on multiple AI chips

    12 July 2026

    Former OpenAI executive Kevin Weil is now on Stoke Space’s board

    11 July 2026

    Phia Accused of ‘Cookie Stuffing’, Taking Affiliate Credit for Unearned Purchases

    11 July 2026

    Oratomic raises $300M to build sustainable quantum computer that only needs 20,000 qubits

    10 July 2026
  • Transportation

    TechCrunch Mobility: A robotaxi ultimatum

    12 July 2026

    Slate Auto partners with Crayola to paint its EV truck

    10 July 2026

    Autonomous drone delivery startup Manna plans major US expansion

    9 July 2026

    Federal authorities are demanding that autonomous vehicle companies stop interfering with first responders

    9 July 2026

    Another massive data breach exposed millions of driver’s license numbers

    8 July 2026
  • Venture

    Filed Under: College Fizz App Accuses VC Of Sharing Confidential Startup Info With Rival Sidechat

    11 July 2026

    Charles Hudson shares the common mistakes he’s seen after investing in 500+ startups

    10 July 2026

    Nandan Nilekani steps down as GP at Fundamentum as it launches third $200m fund

    9 July 2026

    What are bending spoons? The little-known owner of AOL and Vimeo who is now public

    5 July 2026

    After $18B IPO, Bending Spoons Founder Says Success Comes From Minimizing Luck

    2 July 2026
  • Recommended Essentials
TechTost
You are at:Home»Security»Spyware found on US hotel check-in computers
Security

Spyware found on US hotel check-in computers

techtost.comBy techtost.com23 May 202406 Mins Read
Share Facebook Twitter Pinterest LinkedIn Tumblr Email
Spyware Found On Us Hotel Check In Computers
Share
Facebook Twitter LinkedIn Pinterest Email

A consumer-grade spyware application was found to be running on the check-in systems of at least three Wyndham hotels in the United States, according to TechCrunch.

The app, called pcTattletale, secretly and continuously captured screenshots of hotel reservation systems, which contained guest details and customer information. Thanks to a security flaw in the spyware, these screenshots are available to anyone on the Internet, not just the intended users of the spyware.

This is the latest example of consumer spyware exposing sensitive information due to a security flaw in the spyware itself. Are also the second known time that pcTattletale has displayed screenshots of the devices on which the application is installed. Several other spyware applications in recent years have had security flaws or misconfigurations that exposed the private and personal data of unwitting device owners, in some cases prompting action by government regulators.

Visitor and booking details were recorded and displayed

pcTattletale allows whoever controls it to remotely view the target’s Android or Windows device and its data, from anywhere in the world. pcTattletale’s website says the app “runs invisibly in the background on their workstations and cannot be detected”.

However, the flaw means that anyone on the Internet who understands how the security flaw works can download the screenshots captured by the spyware directly from pcTattletale’s servers.

Security researcher Eric Daigle told TechCrunch that he found the compromised hotel check-in systems as part of an investigation into consumer-grade spyware. These apps are often referred to as “stalkerware” for their ability to be used to track people — including spouses and domestic partners — without their knowledge or consent.

Daigle said he tried to warn pcTattletale about the issue, but the company did not respond, and the flaw remains unresolved at the time of publication. Daigle revealed limited details of the leaked screenshot bug on pcTattletale in a short blog postwithout providing specifics so as not to help bad actors exploit the flaw.

Daigle said pcTattletale periodically takes new screenshots of the device the app is running on, sometimes every few seconds.

Screenshots from two Wyndham hotels, seen by TechCrunch, show guests’ names and reservation information on an online portal provided by travel tech giant Sabre. The screenshots of the web portals also show the numbers of some payment cards of the visitors.

Another screenshot showed access to a third-party Wyndham hotel check-in system, which at the time was connected to the Booking.com management portal used to manage a guest’s reservation.

It is not known who installed the app or how the app was installed — for example, if hotel employees were tricked into installing it, or if the hotel owner intended the spyware to be used to monitor employee behavior. pcTattletale is marketed as a way to track employees, among other uses.

The manager of one affected hotel told TechCrunch by phone that they were unaware the spyware was taking screenshots of their computer at check-in. Managers at the other two hotels did not return TechCrunch’s calls or emails. TechCrunch is not naming the specific hotels given the risk of retaliation against hotel employees.

Wyndham spokesman Rob Myers told TechCrunch in an email: “Wyndham is a franchise organization, meaning all of our hotels in the US are independently owned and operated.” Wyndham could not say whether it knew pcTattletale was being used on the front desk computers of its branded hotels, or whether the use of pcTattletale was authorized by Wyndham’s own policies.

Booking.com told TechCrunch that its own systems were not breached by the spyware, but that this case seemed like an example of how hotel systems are targeted by cybercriminals to gain access to hotel accounts.

“Some of our accommodation partners have unfortunately been targeted by very convincing and sophisticated phishing tactics, encouraging them to click on links or download attachments outside of our system that allow malware to be loaded onto their computers and, in some cases, lead to to unauthorized access to your Booking.com Account,” said Angela Cavis, a Booking.com spokesperson. “These bad actors then try to impersonate the partner (or even Booking.com) — sometimes very convincingly — to request payment from customers outside of the policy on their booking confirmation.”

BBC News reported last December that cybercriminals had gained access to the management portals of individual hotels using Booking.com. With this access, the criminals then sent messages to customers from the company’s app to trick them into paying them instead of the hotel.

It is not known whether pcTattletale or other spyware is linked to previous incidents, and Booking.com said it is investigating.

“All routes covered”

There’s a long history of stalkerware apps that ostensibly market themselves for legitimate uses — tracking your kids is legal in the United States — but also promote, or shall we say outright, that the apps can be used to target people without their knowledge, often spouses and domestic partners, which is illegal.

pcTattletale is marketed under the guise of child and employee monitoring software, but the company also promotes its app for use against “spouses who are worried their partner might be cheating.”

A screenshot of pcTattletale’s member portal, which allows users to download the tracking app that “users won’t know pcTattletale is installed and running.” Image Credits: TechCrunch (screenshot)

pcTattletale develops spyware apps for Android and Windows, and both apps require physical access to a target’s device to install. pcTattletale provides its Windows spyware application as a one-click download that can be installed in seconds, according to TechCrunch’s own spyware testing and analysis.

pcTattletale also offers a service called “We Do It For You,” which the company says will help install the spyware on the target’s computer on behalf of the customer.

“We put pcTattletale on their Windows PC for you. Just pick a time,” the pcTattletale website tells customers within its member portal. “You will receive an email with instructions to access their computer. It takes us about 10 minutes. They left no traces behind. All the pieces covered.” The customer is then sent a link “for our technician [sic] to access the computer.”

Bryan Fleming, who founded and runs pcTattletale, did not respond to TechCrunch’s request for comment.


To contact this reporter, please contact Signal and WhatsApp at +1 646-755-8849 or via email. You can also send files and documents via SecureDrop.

checkin computers cyber security Exclusive hotel Spyware wyndham hotel group
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleGarry Tan has revealed his ‘secret sauce’ to getting into Y Combinator
Next Article Meta’s Ray-Ban smart glasses now let you share images directly to your Instagram Story
bhanuprakash.cg
techtost.com
  • Website

Related Posts

Hot French startup ZML releases free product to speed up inference on multiple AI chips

12 July 2026

OpenAI bets on families as ChatGPT goes deeper into households

11 July 2026

A new app, HyperTexting, turns the open web into a social media scrolling-like stream

11 July 2026
Add A Comment

Leave A Reply Cancel Reply

Don't Miss

Meta enters the crowded AI coding fray with Muse Spark 1.1

13 July 2026

Elon Musk says X will send DMs when posts you’ve interacted with are fixed

13 July 2026

AI chip maker SambaNova raises $1 billion at $11 billion valuation, 5 months after last mega round

12 July 2026
Stay In Touch
  • Facebook
  • YouTube
  • TikTok
  • WhatsApp
  • Twitter
  • Instagram
Fintech

Don’t want to invest in Elon Musk? Two new ETFs expressly exclude him

10 July 2026

India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

28 June 2026

Early Bird pricing ends tonight for the Founder Summit

26 June 2026
Startups

AI chip maker SambaNova raises $1 billion at $11 billion valuation, 5 months after last mega round

Hot French startup ZML releases free product to speed up inference on multiple AI chips

Former OpenAI executive Kevin Weil is now on Stoke Space’s board

© 2026 TechTost. All Rights Reserved
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer

Type above and press Enter to search. Press Esc to cancel.