A few days ago, homeowners received letters from Yapstone/VacationRentPayment notifiying them of what many homeowners referred to as a security breach for the time period between July 15, 2014 and August 5, 2015.
Here is the explanation/statement from Steve Davis, HomeAway chief information officer:
“Yapstone, one of HomeAway’s payment providers, notified us that a private URL containing vacation rental owner’s and manager’s personal information was made publicly accessible, resulting in an information disclosure that occurred on Yapstone’s systems. The issue was immediately corrected and potentially impacted customers were notified. No exposure of credit card information or passwords occurred, nor were HomeAway systems compromised in any way.
We continue to support YapStone through this process and work closely with their team to ensure they continue to meet HomeAway’s high standards for security and data protection.
HomeAway and YapStone sincerely regret any inconvenience this has caused our customers. For additional information, people may contact YapStone at (877) 238-3816.”