Every Way Sirvoy’s Four Latest Security Features Keep Your Account Safe

July 17, 2023, 09:41 PM EDT

Worldwide in 2021, 97 people per hour were victims of data breaches.1 The prevalence of cybercrime is alarming for any business, but the hospitality industry is an especially tempting target. Between 2021 and 2022 data breaches cost the hospitality sector an average of $2.94 million.2

But Sirvoy users can rest easy; our team is dedicated to your cybersecurity. Here are some of the latest Sirvoy features keeping your business and guests secure.

Login Verification

Signing into a Sirvoy user account now requires a verification code sent by SMS or to the account’s email address. Users can then decide if the login device is trusted. Trusted devices require verification only once a month, instead of at every login.

This feature makes it significantly more difficult for user accounts to be compromised. Even if criminals illicitly obtain your account login details, they won’t be able to log in without also having access to your phone number or email account. If such a login is attempted, our system will send a warning to your email address.

Compromised Password Verification

Every user account password is now cross-checked against public lists of passwords known to have been compromised in data breaches. If a match is found, our system will automatically trigger a password reset. 

This prevents Sirvoy accounts from using passwords that cybercriminals have access to, adding an extra layer of security. 

Password Verification

Before performing changes to sensitive areas, such as editing your user profile or other user accounts, the current user’s password must be verified to confirm their identity. 

We always recommend logging out of unsupervised devices, but this new layer of protection will prevent anyone from editing or removing user accounts, even if they physically gain access to your already logged-in device.

DDoS Attack Mitigation

A Distributed Denial-of-Service (DDoS) attack is when criminals flood a site with malicious traffic so that legitimate traffic is slowed or halted. To counteract DDoS attacks we’ve implemented several automatic features to cut off malicious traffic as soon as it’s detected. 

These features ensure Sirvoy’s reliable operation. If a DDoS attack is detected, it will be reported on the Sirvoy status page

How To Keep Your Account Secure From Fraud

In addition to the protective wall that Sirvoy provides, there are also steps your hotel can take to shore up its cybersecurity. 

Protect yourself and your business from cybercrime:

  • Do not open any messages claiming to be from Sirvoy with a domain that isn’t sirvoy.com.
  • Use a strong, unique password for your Sirvoy account.
  • Keep your email account secure (it can be used to reset your Sirvoy password).
    • Use a strong, unique password. 
    • Use 2-factor authentication.
    • Don’t install apps or software from unknown sources.
  • Make sure the latest updates are installed on your computer’s operating system (Windows / Mac OS / ChromeOS / Linux), mobile devices (tablet/smartphone), internet routers, and other smart devices.
  • Remove unused plugins to avoid security vulnerabilities.

If you ever feel that your account has been compromised, contact our support team. We’ll act immediately to secure your account and prevent damage to your business.


  1. AAG (The Latest 2023 Cyber Crime Statistics, 2023)
  2. IBM (Cost of Data Breach Report, 2022)