Do You Know Who’s Stealing Your Airline Miles?


By Robert McGarvey


The dark web is aflood with stolen airline miles for sale.  That’s the surprising punch to the face in a recent report from Comparitech.

The subhead delivers the message: “There’s a black market for your frequent flyer miles. Stolen frequent flyer accounts and rewards points are a hot commodity on the Dark Net.”

According to Javelin Strategy + Research, in 2017 11% of attacks on existing financial accounts were on loyalty programs. That’s up from 4% in 2016.

According to Barry Kirk, Vice President of Loyalty, Maritz Motivation Solutions, “Every sizable loyalty program was a victim of attempted fraud or hacking in 2017. Those who believe they weren’t simply haven’t paid attention.”

Maritz research says that 7% of us self identify as victims of program fraud.

Left unknown is how many of us are victims but haven’t realized it – probably because a little used account was pilfered.  If we do eventually return to that site, we may have forgotten what our miles total should be and just accept that, well, I must have emptied it out, I forget on what.

Headline winning breaches of loyalty programs are few.  The Hilton attack four years ago comes to mind.

In 2015 United and American admitted their programs had been hacked – but both were relatively small thefts. Some 10,000 accounts were said to be compromised at American, fewer at United.

Yet hackers are continually nibbling away at our stashes of miles and points.

A proof is that brisk dark web marketplace, reported by Comparitech, which observed: “On Dream Market, one of the largest black markets on the dark web, a single vendor sells reward points from over a dozen different airline reward programs, including Emirates Skywards, SkyMiles, and Asia Miles. Going by the handle @UpInTheAir, they sell a minimum of 100,000 points for the reward program of your choice, starting out at $884 as of time of writing (this was probably $1,000 originally, but Bitcoin price fluctuations caused it to go down).”

A rule of thumb is that miles are worth 1 to 2 cents apiece (of course smart shoppers can get significantly greater value and less astute shoppers will get lower returns).

On the dark web, however, the going rate, according to Comparitech, appears to be much lower – often as little as 1/10th of the typical value.

There’s a reason for that. Stolen miles probably will not get cashed in for flights, mainly because of ID issues.  So what are they good for?


For instance, in 2017, Air Miles, a Canadian loyalty scheme, issued a warning that thieves were using miles to buy merchandise in stores that participate in the program.

In other cases, bolder crooks redeem miles for flights and then sell the travel on websites, often at huge discounts.  See a flight going for half what it’s worth and that’s a red flag for trouble ahead.

How do thieves get most of their stolen miles? Generally by hacking into individual accounts – meaning they figure out your user name and password, or they use a robot to try enough combinations until it stumbles into the proper formula.  It sounds labor intensive but, increasingly, it is automated.

Loyalty programs now are in a fast track mode to contain fraud. According to Maritz’ Kirk, “Until very recently, program fraud was only discussed in hushed tones or dismissed as a non-issue. Now all major loyalty agencies proudly promote their fraud protection tools and process.”

Even so, the burden is on you.  The miles and points are yours and that also means they are yours to safeguard.

How? That’s easy.  Comparitech offered a number of tips, including:

“Shred your boarding pass after a flight.
Never post a photo of your boarding pass online.
Use a strong and unique password for your frequent flyer account.
Monitor your account for suspicious activity.”

The last is crucial.  Make it a habit to stop into your loyalty accounts at least monthly.

And also make it a habit to change your passwords occasionally, certainly yearly.

One last bit of advice: just don’t use public wifi to access your loyalty accounts. Of course it’s tempting when you are sitting at the airport to put the time to use surfing your airline and hotel websites. Don’t. At least don’t on public wifi. Use a cellphone hotspot instead.

It’s up to you to protect your miles.  Know that and do it.

So Now Do You Trust TripAdvisor?


By Robert McGarvey


TripAdvisor has brought out the megaphones, hired the brass band, and is busily proclaiming that its fraud team has made TripAdvisor reviews a safe place for us to find the information we need to book the right accommodations. It’s a story with a lot of fake reviews, even an arrest.

Should we break out the bubbly?  Maybe not yet.

TripAdvisor crowed online: “Back in 2015, our dedicated team of fraud investigators identified a new illegal business in Italy called PromoSalento that was offering to write fake reviews for hospitality businesses to boost their profile on TripAdvisor. Several Italian businesses forwarded the emails to us, which kick-started an investigation that would ultimately see the person behind PromoSalento sent to jail!”

Tnooz, a trade pub, reported on this outcome: “In June of this year, the Criminal Court of Lecce found the owner guilty of using a fake identity to commit fraud. He has been sentenced to 9 months in prison and will have to pay 8,000 euros in costs and damages.”

Posting fake reviews is in fact illegal in some of Europe.

Question: Is it illegal to pay for fake reviews in the US? It’s not clearly illegal although posting such reviews has and could result in litigation that would be expensive to fend off.

What I can say is that I have seen numerous solicitations to pay writers to create fake reviews. Rates, incidentally, are paltry – often $10 or under. Sometimes $5. 

But for the right writer – particularly in the right low cost country – $5 might be a decent wage for a few minutes work.

Often, too, I have spotted an avalanche of fake reviews posted by hotel staff or maybe their friends.  

TripAdvisor says they have their eyes open for this and they point to their detailed work to hunt down the Italian behind the paid reviews in his country. “Over the course of our investigation, our technical analysis identified and then either blocked or removed more than 1,000 attempts by PromoSalento to submit reviews to the TripAdvisor site on hundreds of different properties.

“PromoSalento attempted to avoid our scrutiny by regularly changing their usernames and email addresses, but our fraud detection processes use a suite of advanced technologies to evaluate hundreds of review attributes such as IP addresses, browser types and even the screen resolution of a reviewer’s device. Based on that analysis, we were able to see a trail of digital and behavioral ‘breadcrumbs’ that led our team straight back to PromoSalento.”

Hold your applause.

What TripAdvisor did is good – that’s obvious – but it also did it to protect its core functionality.  A Gresham’s Law applies online where bad reviews drive out good and so TripAdvisor cannot allows its service to be overwhelmed by bad reviews.

Particularly not when it is all so blatant.

Just a few problems that lead me to be restrained in saluting TripAdvisor.

First, there are many ways to buy fake reviews that probably will sidestep algorithms that hunt for fraud – e.g., paying writers only when their review had been posted by them and gone live. That leaves no trail back to the buyer and, from what I hear, the market for fake reviews remains brisk.

Second, there are – to my eyes – obviously fake reviews generated internally that still pop up with regularity.  TripAdvisor doubtless has algorithms that hunt for fakes. But give a hotel employee a VPN and imagine how many reviews he/she can post.

TripAdvisor itself has warned hotel employees to cool it.  That tells you the problem is bad.

It gets worse, a lot worse.

The bigger problem: TripAdvisor itself has a history of deleting negative reviews that aren’t fake, anything but. They just stung hotel and restaurant employees who insisted they come down.  And they did. Some of those deleted reviews in fact alleged rapes by hotel employees.

That is information a potential guest very much would want to know.

TripAdvisor of course has said its corrected its behaviors, even putting in a badge notification for establishments that may have had allegation of rapes and assaults.

Is that good enough for you?

Know your rights. Congress last year passed the Consumer Review Fairness Act which makes it illegal to threaten to sue consumers or seek to penalize them financially for negative online reviews.  

The FTC has said it will slap companies that ignore the law.  

Personally I want more from the FTC.

But, mainly, I want more from TripAdvisor.  A reliable review site would be a very good thing in the fragmented hotel business – and a marvelous thing for those of us who travel internationally where, in many countries, independents are the only choices.  So there isn’t that same brand promise that guides us to many hotels in the US.

I want TripAdvisor to work.  

I’m just unconvinced that it does.

Ask me again in six months. TripAdvisor just has announced a massive shift into professional content and a move away from consumer created content.  Is that the answer?

Color me skeptical.  A lot of “professional” content is anything but. And these days it proliferates like kudzu. But ask anyway in six months because maybe my answer will be cheerier.

Or maybe not.


What Happens When TSA Mangles Your Bag?


By Robert McGarvey


It’s a traveler’s nightmare. Something is stolen from your checked bag – it’s almost always the good stuff too such as jewelry or a slick camera – or maybe the bag and its content simply are demolished and what you retrieve at baggage claim is scrap.  Then what?

Surely you’ll be made whole, particularly when your gripe is with TSA, a federal agency, not an airline.


An story’s headline tells you what to expect: Good luck getting money from the TSA for your lost, damaged luggage.  

New data via Dorian Banutoiu – which looks at 16 years of claims, 2002-2017, is just as grim.  It shows that of 218,000 claims, 101,000 were denied, 9000 are pending, and 83,000 are marked paid.

The research crunched data from only the 15 busiest airports – Newark included – and it found that: “Of the 34,127 claims filed at these airports from 2010 to 2017, almost 41 percent — or four out of every 10 requests — were denied. In contrast, about 26 percent were approved for payment or settled for a lesser amount. About 13 percent were under review, and the rest had been canceled.”

In the LA Times, reporter Hugo Martin – drawing on TSA data mainly from 2016 – concluded this: “Of the TSA claims that are resolved, 54% are denied, 24% are approved in full, 12% are settled for an amount less than what was requested and 10% are canceled or closed out for other reasons.”

Martin continued: “The most common items lost or damaged are bags, cases, purses, clothing, computers and accessories and jewelry.”

That’s right, the good stuff.  Nobody wants to take my 20 year-old LL Bean toiletry bag, please.

Martin added: “Jewelry, cash and camera equipment are the items rejected by the TSA at the highest rate, at least 70% of the time.”

The data also show that claims made at checkpoints are far more likely to be approved than are claims involving checked baggage.  That’s bad news because data show that 75% of claims involve checked baggage. Just 24% are at checkpoints.

The average settlement amount over the past 16 years is $199.

Curiously, according to Travel Pulse, “If you are filing a claim, you are more likely to get repaid if you file it in the first half of the year, according to the data, which found that there was a lower average of payments approved in the second part of the year.” added: “Critics say the TSA takes an overly harsh approach, often claiming it can’t find evidence that it was responsible for the loss or damage. And the agency continues to deny the problem of theft at airports, they say, though there’s few other explanations for the losses.”

Theft, according to, is the biggest issue: “About 60 percent of all the claims at these airports related to property loss.”

Some airports have so much theft that occasionally local police issue warnings, as happened not long ago at Orlando.  

Some grumbles about TSA are genuinely macabre, such as an NFL player’s complaint – with photos to prove his point – that TSA spilled his late mother’s ashes in his bag.  

Particularly interesting in the data dump is its tally of which airports are most likely to see claims denied and the big winner – by far – is Las Vegas/McCarran where 56% of claims are denied.

The best airport for these matters is San Francisco where essentially all claims are approved.

Newark Airport, for what it’s worth, came in just behind San Francisco, approving roughly 65% of claims.

How not to become a victim? That’s easy. Never pack anything of value in checked baggage. Clothing, maybe. But jewelry, electronics, etc., nope, do not think about it. Carry it on. Or leave it at home.

Also, report any losses as soon as detected, ideally within 24 hours.  Procrastination will work against you.

Some passengers are also buying GPS trackers for their luggage – although there’s no clear connection between tracking a bag’s whereabouts and stopping theft of particular content.

The bad news of course is that, in coach, the battle for the overhead bin is as fierce as ever, as a USA Today headline shouted.  That forces many passengers to check bags and that triggers many possible miseries.

There is a cure. My advice regarding valuables is if you don’t need it, don’t bring it.  Personally I travel with an old Chromebook – not worth $100 – and if it went missing I’d shed no tears.  I bring no jewelry.  Nothing of any real value. Haven’t in some years.

Spartan? I suppose. But very, very practical in today’s travel marketplace.  




Sustainability, Business Travel and You


By Robert McGarvey

87% of us want to travel sustainably, said a recent poll via But more of us fail than succeed.  39% said they always or usually travel sustainably. But 48% of us admit we fail.

Business travel is a substantial offender. Said pwc: “Business travel remains our single largest source of carbon emissions, and – as we’ve continued to reduce our emissions from energy – has grown to around 80% of our total carbon footprint in 2017.”

Most big businesses would have to say ditto. Where their pollution is biggest is in travel.

The prime offender of course is air travel:  it amounts to 70% of our total emissions, per pwc.

The more I dig into sustainability and business travel, the more questions and concerns I have.  Suddenly sustainability seems a life or death issue.

One look at starving polar bears ought to persuade you that this stuff is serious, it is way beyond a crunchy granola fear.

Here’s the idea that frightens many business travelers: “The simplest way to cut emissions caused by travel is to avoid it,” said pwc.  


I am a product of a time and a work culture where a possible trip produced quick assent: sure, I’ll go.  It could be a convention in Chicago, an angry client in Washington DC, a prospective new client in Los Angeles, or a speech in Boston. It didn’t matter. Sign me up.

Now I am beginning to question every trip: is it necessary? Can I do it via telephone?  

When the impact of business travel was mainly on my time, I shrugged off the time burdens and said sure.  Now – increasingly – the impact seems to be on the planet itself and that is a much bigger issue.

A bonus: traveling less is also good for our personal health.  The evidence is strong that a heavy travel load is bad for our bodies.

That’s another reason to really question our trips.

Do you remember when it was common for a big company to send a few hundred junior execs off to a conference center to spend three or four days learning, say, Lotus 123 or WordPerfect? That was the norm and, for many Boomers, it seemed fun.

Millennials, who today are carrying the bulking of the business travel load, aren’t buying the rationale of that trip, mainly because they know that they could learn new software perfectly well at their desks – with no new carbon hits such as are associated with those those trips of yesteryear to learn new software.

Oh, I also vividly recall a story told me by the VP of HR at a Fortune 100 company where, in the mid 1980s, as a junior exec, he was sent off to one of those trainings where he in fact learned Lotus 123. Just one problem.  When he returned to his office, he still did not have a computer and by the time he got a computer a few years later, he didn’t remember a thing about Lotus 123.

But he did tell me that under his leadership the company was minutely scrutinizing all planned educational meetings – and he hoped to eliminate most.

That’s a harsh reality. As I look back I see a lot of trips that I now see as unnecessary.  

I am a fan, incidentally, of big, glitzy, high energy sales conferences – they pump up attendees in ways that won’t happen when you sit at a desk and watch a video of even a high impact speaker like Tony Robbins.  In person just is more powerful.

Small meetings where intimate exchanges happen also can only be in person.

But a lot of business travel remains a product of habit, of how we have always done business.  And maybe it’s time to rethink.

Right now, hotels are tripping over themselves to announce they will no longer use plastic straws.  Some also are replacing individual toiletries with bulk dispensers. Many others encourage us to use towels and sheets multiple days.

So what?

All those steps are good as far as they go but they don’t go far and if you never use a plastic straw again in your life it will have zero impact on polar bears.

We probably shouldn’t be in that hotel room at all.

What really matters is flying only as necessary.  Using public ground transportation. Walking is better still.

Always ask, is this trip necessary? Really?

What’s the lowest carbon impact to get this business handled?

The encouraging reality is that more of us are genuinely asking those kinds of questions and acting accordingly.  The old days of “sure, boss, I’ll be in Houston tonight, no prob” are over. Maybe we’ll go to Houston, maybe we won’t, and what’s new now is that we’ll carefully assess the alternatives. When flying is the better choice, off we go. When it isn’t, home we stay. And that’s a better reality. For us and for the planet.

The 20% Travel Ripoff


By Robert McGarvey


Can you do basic arithmetic? Do percentages? Of course you can and, in fact, we learn in fifth and sixth grades how to compute simple percentages in our heads. Quick now, what’s 20% of $100 – or 20% of $250?

Sure, you can do the math. But now some MGM resorts in Las Vegas – notably Aria, Bellagio, and my once personal favorite, Vdara – will tack on a 20% upcharge when you get a massage, facial, haircut, and similar.

Bellagio, on its website, explains the upcharge: “For your convenience a 20% service charge will be added to each spa and salon service received. A portion of the service charge is dispersed to the spa and salon staff members who served you and the remainder is an administrative fee. Additional gratuities are at your discretion.”

The LATimes, in reporting on this, quoted an email from company spokesperson Brian Ahern: “Our employees go above and beyond to provide the best possible service, and it’s important that they receive recognition for a job well done.”


A coerced tip somehow counts as “recognition for a job well done?’

When a masked man puts a gun in your gut and takes your wallet, is this recognition for a job well done?

It’s Vegas, baby.

But it is nonsensical.

It’s picking my pocket to let the employer underpay its employees and why, by the way, is the customer hit with an “administrative fee” when paying a tip?

Don’t ask, there is no answer.

The trouble is that what starts in Las Vegas often spreads, like a bad disease, across hospitality.  Consider resort fees.  Sure, a few Las Vegas hotels shun the practice but most slap a fee – $39 per night at Vdara and Bellagio, by the way – and you got me what you get in return.

Across America, many, many more hotels – some in cities – have climbed on and now impose “resort fees” or “urban amenity” fees mainly as a way to hike room rates without actually hiking room rates.  But that $99 hotel room has become $129 and the culprit is the resort fee.

Now, Las Vegas has decided we are too dumb – or cheap – to tip their salon and spa employees and, oh wait, isn’t it the employer’s job to compensate employees?  Not the customer’s?

It’s Vegas, baby.

A few years ago I ran across a spa in Arizona that hit customers with an automatic 20% tip and when I asked the company president what possibly justified this, he took offense. Didn’t I see that he was providing his spa customers with a convenience? Doing the math for them because, presumably, they are too blissed out by the spa treatment, or maybe just too stupid, to do a simple calculation that most 12 year-olds can do in an instant.

Johnny, what’s 20% of $120?

Jane, how about 20% of $160?

(Hint: just multiply 2 times the first two digits and, bingo, you have the sum.)

I am and have been opposed to mandatory gratuities – anywhere from cruise ships to spas.

I also, some years ago, drove a taxi and gratuities made or broke my night.  If I got stiffed by too many fares, I cursed them and I went home with a lot less dough than I had hoped for.

I understand the importance of gratuities.

But I resent it when they are shoved down my throat.

I am okay, by the way, with Danny Meyer’s campaign to end restaurant tipping and instead build tips into the prices for food shown on the menu. Of course I’ve eaten at enough Meyer places to believe his staff will deliver good service without the promise of a possible tip, or the withholding of one – and the difference between what Meyer believes is right and what MGM is forcing on customers is that Meyer shows one price, tip already built in, whereas in the hotel business there’s a service price and then, by magic, a service charge is tacked on so that $100 haircut now is $120.

With Meyer there is no chicanery. That’s the difference.

Automatic “gratuities” by the way seem rampant in the spa world and you have to ask: why is management so cheap that it won’t pay its employees adequately and why are customers so passive that they go along with this extortion?

Maybe what starts in Vegas really should stay in Vegas.

Would You Pay for Business Travel Upgrades Out of Your Own Pocket?


By Robert McGarvey


New research via Travelport slapped me upside the head so hard I  thought of Mo Howard and believed I was having a Three Stooges moment. Except, apparently, this is reality.

According to Travelport, 55% of us will pay for travel upgrades out of our pocket. This includes better seats on planes, WiFi, and hotel rooms.

The research also underlined how we have in fact become a nation of wimps where 69% of us say we always comply with our organizations’ travel policy. Another 26% say they “frequently” comply.  Meaning that just 5% commonly go rogue.

Color me mistaken.  In the past I have laughed at airline beliefs that we’d pay for seat upgrades – I am apparently wrong.

(I was right, though, in railing that we had become a nation of wimps. Sigh.)  

As for what we told Travelport we’d pay for with our own dough (or frequent flyer miles), 49% said a better airline seat.  52% said a better hotel room. 50% said upgraded hotel WiFi. 50% said upgraded rental cars. Only 19% said there’s nothing they would pay for.

How about you?

I’ll admit I have occasionally used miles to buy upgrades – but I’d earned the miles flying for a specific client and was doing another trip for them and have decided to spend some of those miles for a business class seat.  Taking the sting out of this is that I know the CEO and I know he complies with his company’s coach only policy – but he pretty much never flies coach because he too spends miles. He’s also United Premier 1K so the airline gives him plenty of perks.

But he didn’t ask me to live by rules that don’t apply to him so I have been okay with spending miles on trips for him.

But I can say I have never spent money – mine or a client’s – on an upgraded hotel room (they are fungible to me) and I have never spent money on a rental car upgrade.  Never.

As for hotel WiFi I rarely use it – I consider it hideously unsafe and use cellular hotspots instead – so I’m not buying an upgrade on that.

My policy – going back to my earliest days on business trips and taught me by my bosses – is that if it is legitimately travel related the company should and will reimburse.  If it’s not, forget about it. And there isn’t a lot of gray in that equation.

In those days you could and should bill for a copy of the Wall Street Journal bought at the airport. But not for a Playboy or Mad Magazine.

I also can only think of one time when a client challenged a travel expense and, honestly, I had carelessly passed on a receipt to a secretary who had typed up my invoice. Not her fault. My fault and the client was right to challenge it.

But when it’s needed for work, the employer or client needs be paying for it.  No questions about that, so my policy is to push back against policies that defy my principles.  

Usually, too, my experience is that these are easy wins.  Ask and you get.

A lot of us apparently are no longer asking.

A sliver of good news in the Travelport data is that 90% of us say we are permitted to keep miles and rewards points we earn on business trips.  And I do wonder about the 10% who apparently kick them back into their organization’s coffers.

Also, many of us now use airport expediting services.  43% are in TSA Pre. 33% are in Global Entry. 31% are in Clear.

Often, employers paid for such services.  Just 17% said none of them. (15% said they belonged to none. It’s not clear if many of those 15% work at organizations that don’t reimburse.)

29% said employers reimbursed for TSA Pre. 28% say similar for Global Entry.  23% said likewise for Clear.

Every employer should pay for one such service for employees who travel on business. That is blatantly obvious to me.

A hot button question in the research is: would you let your employer use GPS tracking to monitor where you go when traveling on business?

Understand: it doesn’t bother me that Google knows where I go (I am a Fi subscriber). It also doesn’t bother me that many rental car companies now use GPS tracking.  

But 25% of us say we would definitely disagree with an employer policy of using GPS tracking on us. Another 21 % say they would “somewhat disagree.”

28% like the idea. 17% “somewhat” like it.

Talk about divided opinion.

As for me, I’m not going to take a position on GPS tracking for others. I am okay with it on me. But I won’t insist others think likewise.

It’s a gray area.

But in my mind there should be no divided opinion – no gray area – about reimbursement for business travel related expenses. If it’s a legit business expense the company needs to pony up.




What Travel Apps Are On Your Phone?


By Robert McGarvey

A new Oracle report came as a wake-up call for me.  Said Oracle: we are using a lot of travel apps. Quite happily.

At first I snorted at this and then I recognized that, increasingly, I personally am making considerable use of apps – just not travel apps so much.

Should I do a rethink?

I do use Headspace and Mondly (language learning), pretty much daily on my Pixel phone. Google’s Fit is my daily companion as it tracks my walking and meditation. I use SeatJunky often (hunting for free seats at cultural events).  Of course I use Facebook on my phone, also a couple of banking apps and PayPal. The list could go on. But the point is just that, definitely, I make growing use of phone apps.

Five years ago I used pretty much no apps with any regularity but apps have crept into my life.

But not travel apps so much.

The Oracle report tells me to rethink that.  

According to Oracle, “Branded restaurant and hotel apps are very popular; almost a quarter of global consumers have at least one hotel or restaurant app on their mobile devices.” The exact number of consumers who use the travel apps, per Oracle, is 23%.

Those who use them use them often, too. Said Oracle: “Branded restaurant and hotel apps are being used weekly; 70% of the hotel/ restaurant branded app users say they use those apps at least once a week.”

For point of comparison, we use mobile banking apps more – but travel apps are surprising strong.  Here is data from a Federal Reserve study: “The Fed survey found that 43 percent of all mobile phone users with bank accounts had used mobile banking in the previous 12 months, up from 22 percent in the agency’s 2011 survey. Among mobile banking users with smartphones (cell phones with internet connectivity), 53 percent with bank accounts used mobile banking in the previous 12 months.”

As far as travel apps go, once we use one, we seem open to using more.  Oracle added: “Once consumers engage with branded apps, they’re open to using several; two thirds of the consumers using hotel or restaurant apps have at least three of them on their devices.”

A last bit from Oracle: “Branded apps are more popular than third party ordering apps – only 20% of global consumers have an app for a third party aggregator.”

It’s the last in fact that surprises me. I do have, and have used, HotelTonight, OpenTable, HipMunk, and a few others.

As for branded apps, I have on my phone Uber (used a lot), United, American Airlines, Delta, My TSA, and, nope, not a single hotel branded app.  I also have no restaurant apps. And I’ve never used the airline apps.

Maybe it’s my age.  Said Oracle: “Only 9% of consumers aged 55+ have a restaurant or hotel app on their mobiles, compared to 31% of millennials.”

I’m in sync with this however: “20% of global consumers have at least one app for a food delivery service on their devices.”  In my case it’s Ubereats, also Amazon Prime Now (which I have used on several occasions). Which puts me in line with this Oracle finding: “28% of global consumers said that they have paid for food and drink from an app on their mobile devices at least once.”

It worked fine for me, by the way.  I just don’t order much takeout food and so haven’t had a need for the apps anyway.

You are sitting out hospitality apps? Oracle said a lot of us do.  “43% of global consumers say that they do not use hospitality apps.” This also is age influenced.  “70% of the 55+ generation do not use apps in any way, compared to just 26% of millennials,” according to Oracle.

Tell you the truth, however, I am now downloading more travel apps and will begin using them because I am getting very accustomed to using apps (like Headspace) every day.

That’s the reality of mobile: the more we use it, the more we use it and, suddenly, we see the convenience of having what amounts to a mini computer in our pocket.

Then too, the power and ease of use of all mobile apps is much higher than it was when the iPhone launched 11 years ago (or the apps we had on our Palm Pilots before then).  

My advice: download three or four travel apps and, probably, you’ll begin to find utility and, no, I’m still not downloading any hotel apps – and year ago research from business intelligence firm L2 dismissed the lot as junk.  As for airlines, here’s a roundup of the best.  And here’s PCMag’s roundup of the best in all categories.

Happy downloading.



The Coming Payments Revolution in Travel


By Robert McGarvey


It’s about time: travel providers, at least the big ones, now are edging into an embrace of the payments revolution that in the past half dozen years have given us contactless payments, also mobile payments such as Apple Pay and Google Pay, and also EMV cards.

Reports Pymnts in a recently published report “Travel Payments Study:” “More than two decades after PayPal was founded, and four years since the launch of Apple Pay, the travel industry is taking its first cautious steps into its own payments revolution.”

The staggering reality is that travel has been under assault by hackers for at least a decade – it numbers among the most attacked verticals in the Verizon Data Breach Report.  Just converting to EMV at gift shops, bars and restaurants at hotels would put a serious crimp in hacker styles, but hoteliers are among the slowest to move into the new technologies.

Taking Apple Pay at check in would also be a boon to guest data security.

A peculiar irony is that credit card data insecurities may be a reason why travel providers have not innovated. Said Pymnts: “At 78 percent, consumer data security was, by far, the most-cited inhibitor to payments innovation. Following that was credit card data security imperatives, at 74 percent, which were listed as either ‘very’ or ‘extremely’ inhibiting. Incurred fraud losses came third, cited by 64 percent of respondents.”

Except now Pymnts reports that changes are coming.

It’s not your imagination that travel providers have been notorious laggards. Says Pymnts: “PYMNTS’ most recent research revealed that just 15 percent of all travel companies have attempted new payments innovations over the last three years, let alone those that succeeded in implementing them.”

Just 15%.  Wow.  This has been a span of feverish innovation, at least when viewed from the stodgy perspective of bankers.  And travel has sat it out.

Operating internationally and a broad industry dependence on third party payments processing services are cited among the reasons for delays in adoption of payments innovations.

Guests, too, have not insisted on innovations. Consider: most of us still, docilely, hand over a credit card in a restaurant, the server vanishes, and a few minutes later a receipt comes at us.  I cannot remember the last time I saw that at a restaurant in Europe, where servers – for at least 15 years in my recollection – have been equipped with miniature credit card processing gadgets that also print out a receipt, all in your plain view.

You just have to wince when you hand over a credit card at a hotel because the data just has been so insecure.  But a big driver for payments innovation – maybe the biggest – has been enhanced security.

And still travel providers stayed on the sidelines.

That’s changing. According to Pymnts, about 80% of travel providers plan payments innovations in the next three years.

14% say they plan to roll out “a lot” of innovations.

Just 5% say they have nothing in the hopper.

What’s prompting travel providers to invest in payment innovations? 91% pointed to customer suggestions as a prod – meaning our grumbles have been heard. 83% also said they had lost customers because they hadn’t innovated.

Reported Pymnts: “The demand for new payment methods isn’t being driven by companies looking to cut costs or boost efficacy, though, but by consumers in search of a more convenient and compelling payment experience.”

Travel providers also expect that although innovations have price tags, they may wind up actually saving money. Reported Pymnts: “We asked respondents whether they believed the financial gains to be had from payments innovations would outweigh the costs, and an impressive 96 percent of the sample had a positive outlook. These companies believe that the revenue gained would outweigh its costs, that innovation would have no effect on costs or that it would actually decrease costs.”

Large companies are much more optimistic about cost reductions than are small – and travel remains a business where there are many small players: travel agents, independent hotels, independent restaurants, local destination marketing companies, etc.  

Big players also see payments innovations as a way to drive down their payments processing costs – and probably they are right.

Should we in fact be optimistic that payments innovations are in fact coming – and that we’ll see more travel providers accepting Apple Pay et. al., installing EMV card readers, and – dare we hope – equipping servers in restaurants with portable reader/printers?

Just maybe we can expect to see all this. Said Pymnts: “One thing is clear, though: Travel companies must invest in improving their payments structures if they want to maintain a competitive edge.”

My advice: grumble about the absence of current payments technology when checking in, when paying in a bar, when paying in a restaurant.  Our grumbles do matter – the research underlines – so keep it up. And just maybe more travel providers will roll out contemporary payments tools.


The Menace That Is Airport WiFi


By Robert McGarvey


Stop right there if you are reading this on airport WiFi. It just cannot be trusted.

That is the frightening take away from a report via data security company Coronet that looked at the security of the public wifi at the nation’s 45 busiest airports. The verdict is unsettling: “For attackers, it is infinitely easier to access and exploit data from devices connected to Wi-Fi in an airport than it is to do so within the confines of a wellprotected office. In fact, the lax cybersecurity posture at most airports has created an environment in which adversaries can utilize insecure public Wi-Fi as the attack vector to introduce a plethora of advanced network vulnerabilities, such as captive portals (AKA Wireless phishing), Evil Twins, ARP poisoning, VPN Gaps, Honeypots and compromised routers.”

Don’t know what all that geek talk means? Here’s a translation: your data is toast and criminals are already busy spreading jam and butter on it as they chow down.

Explained Coronet: “business travelers connected to risky airport networks unintentionally share important information about their cloud-based-apps with adversaries. Such compromise can trickle down through entire organizations, leading to operational disruption, financial losses and even reputational harm, among other damages.”

How did we get in this situation?  

Good question but, first, know that risks do vary by airports, according to Coronet. Some do a much better job of protecting their wifi than do others. Coronet came up with a complex metric to measure and weigh risks at airports and it determined that some airport wifi is just too risky to use.

What goes wrong with some airport wifi is that it is a petri dish for malware and another, huge issue is that some networks just aren’t good about hunting for and blotting out fake networks that masquerade as real.

Understand: a criminal with a few hundred dollars worth of easily purchased gear that will fit in a briefcase can erect a bogus network and slap on it a name that seems legit, maybe something like FreeAirportWifi.  Use that network and, very probably, a criminal is logging your every keystroke – into your company server, your bank account, your email, and the list goes on.

But criminals have been inventive in coming up with novel attacks via airport wifi.  Lock one door and they already have opened another. At least at many airport wifis.

What wifis must we avoid? Coronet identified seven that it believes are very high risk.

The nation’s worst? San Diego International (SAN) which notched a threat index score of 10.  (Coronet believes scores of 6.5 and higher should be avoided.)

Next worst: John Wayne (SNA) at 8.7.

Followed by Hobby (HOU), 7.5; Southwest Florida (RSW), 7.1; Newark (EWR), 7.1; Dallas Love Field (DAL), 6.8; and Phoenix Sky Harbor (PHX), 6.5.

Color me very aggravated because the two airports I have used the most in recent years are PHX and EWR.

Some airports do a good job with their wifi. The safest airport, per Coronet, is Midway in Chicago at 4.5.

But really just don’t trust airport wifi. Not in the US, not overseas.

How can you stay safe and still use it?  My advice has been and remains to avoid free airport wifi. Just don’t use it.  What I do is create a hotspot with my cellphone and connect through it. (I have had no issues despite travel through EWR and PHX.)

Many travelers tell me they frequently use airline club wifi with no issues. Personally I have often used Amex’s Centurion wifi, again with no issues.

Some also use VPN – and if you are going to use free airport wifi, even at the airports identified as safer, do use VPN or the cloud-based secure browser Silo via Authentic8 which confines risks to its servers, not your company’s, not even your laptop.  Which is better? That’s your call but, personally, I am liking Silo because I don’t see a speed hit as I have with VPN.

Others have told me they use fee-based hotspot network Boingo, often in connection with a free plan via American Express.  

Bottomline: just as smart travelers eschew hotel wifi as too risky, the time is now to cold shoulder free public airport wifi. The risks simply will multiply and there is no indication that airport authorities have any plans to seriously attack the criminals who now are hunting for victims on airport wifis around the country.


The Homeless Are Coming! Cancel That Meeting! — UPDATED



By Robert McGarvey


Bar the doors: the homeless are coming and they will mess with your next business trip, definitely also your next convention.

Who wants to share a sidewalk with a stinky, dirty bum?

That’s a takeaway from recent news, out of San Francisco, that a major medical association cancelled a meeting over the city’s homeless population (estimated at 7500, in a city with a population of 870,000).  

“It’s the first time that we have had an out-and-out cancellation over the issue, and this is a group that has been coming here every three or four years since the 1980s,” Joe D’Alessandro, president and CEO of S.F. Travel, the city’s convention bureau, told the San Francisco Chronicle.

The Chronicle story continued: “The doctors group told the San Francisco delegation that while they loved the city, postconvention surveys showed their members were afraid to walk amid the open drug use, threatening behavior and mental illness that are common on the streets.”

There are factual errors in this – more below – but, first, let’s accept a reality: cities have increasing homeless populations.  I live in Phoenix – where the homeless count is estimated at 5605 across Maricopa County but most are in Phoenix, typically downtown, because many parts of the county give them the boot. I live in downtown and every day I talk with homeless people.  This week I am working at a church that will feed 150 in a “heat respite” day, on a day where the temperature will go above 110.

Los Angeles, where the medical group is believed to be scheduling its meeting, has a homeless population of 57,794.  They are especially numerous downtown and in Venice Beach.  

New York City has a big homeless population. So does Philadelphia.  So does Boston.

Washington DC, the nation’s capital, has 6904 homeless.

I can’t think of a big city that doesn’t have lots of visible homeless.

As a nation we are failing to provide safety nets to many and one result is a burgeoning homeless population.

Here’s advice: if a group insists on meeting sans homeless, cross off every city of any size. Go to a resort.  Or the Las Vegas Strip. (Las Vegas has an estimated 6490 homeless but I have never seen one on the Strip.  If they are there they are wearing shorts, a too tight top, and sunglasses so they fit in.)

Hawaii, by the way, has a substantial homeless population. Don’t think paradise offers a safe harbor.

Just about every expert agrees that, nationally, the homeless population is climbing upwards.

Should groups flee the grunge – or should they come to see and smell what life is like for the have-nots?  That’s the choice of every group. It’s not for me to dictate.

But, personally, every day that I walk among the homeless I learn and, particularly, I learn that small acts of human kindness make a lot of difference to those who have basically nothing. I am put in mind of this from the Bible: “Truly I tell you, whatever you did for one of the least of these brothers and sisters of mine, you did for me” (Matthew 25:40, 45, NIV).

Back to the alleged meeting cancellation in San Francisco. Well, it turns out it just ain’t so. Here is more from D’Alessandro in a different publication: “For clarification, they didn’t actually pull or cancel the convention. We were just one of their finalist cities, and they chose to go somewhere else. And they actually have two upcoming years that they’re already booked in San Francisco. The group itself does not want to release their name, so I want to respect that. But when they gave us their reasons for choosing another city, their main issues were cost, that it was expensive in San Francisco, and also they said that the condition of the streets was not what they had hoped to see.” (Emphasis added.)

Oh my. Literally dozens of stories ran, in publications around the country, that San Francisco’s homeless population had cost it a major medical meeting and it is not so. Not even a little.  There never was a confirmed meeting to cancel.  Never.

I have talked with many meeting planners over the past 20 years.  They have also told me they crossed off cities as possible locations because of crime (Manhattan in the 1980s, for instance).  Worries about terrorism are a related concern that can trigger an unwillingness to meet. Occasionally it’s been lack of airline lift. But the most common reason a city gets eliminated usually has been money.  When hotel room prices, on average, cross a line, that spells trouble for the city in attracting meetings. Manhattan has been a case in point for years.

San Francisco has now crossed the line. A few years ago Bloomberg ran a story headlined “San Francisco Hotels Are the World’s Priciest.”

Update: Reader Chris McGinnis (in comments) pointed out that the Bloomberg story got a lot of this wrong.

Nonetheless, San Francisco continues to rank among the most expensive cities for hotels (even if not the most expensive) and this is a problem for many meeting planners. Which is what D’Alesandro said in that Travel Weekly follow up interview.  

If San Francisco wants more big meetings it has to lower hotel costs. That’s the simple answer.

Solving the homelessness epidemic, well, that’s not simple.  But the homeless aren’t costing Baghdad by the Bay meetings.  They just aren’t.