Stories
Slash Boxes
Comments

SoylentNews is people

SoylentNews is powered by your submissions, so send in your scoop. Only 18 submissions in the queue.

Up to 500 Million Customers of Marriott International Hotel Group Involved in Data Breach

posted by takyon on Saturday December 01 2018, @02:51PM   Printer-friendly
from the I-have-reservations dept.

martyb writes:

Marriott Hack Hits 500 Million Guests:

The records of 500 million customers of the hotel group Marriott International have been involved in a data breach. The hotel chain said the guest reservation database of its Starwood division had been compromised by an unauthorised party. It said an internal investigation found an attacker had been able to access to the Starwood network since 2014.

[...] Starwood's hotel brands include W Hotels, Sheraton, Le Méridien and Four Points by Sheraton. Marriott-branded hotels use a separate reservation system on a different network.

Marriott said it was alerted by an internal security tool that somebody was attempting to access the Starwood database. After investigating, it discovered that an "unauthorised party had copied and encrypted information". It said it believed its database contained records of up to 500 million customers. For about 327 million guests, the information included "some combination" of name, mailing address, phone number, email address, passport number, account information, date of birth, gender, and arrival and departure information. It said some records also included encrypted payment card information, but it could not rule out the possibility that the encryption keys had also been stolen.

[...] The company has set up a website to give affected customers more information. It will also offer customers in the US and some other countries a year-long subscription to a fraud-detecting service.

The attacker had access since... 2014? To the records of half a billion customers? How many can invoke protections provided in GDPR (General Data Protection Regulation)?

SoyCow0824 adds:

Source: Marriott breach leaves 500 million exposed with passport, card numbers stolen

Original Submission #1Original Submission #2

 
This discussion has been archived. No new comments can be posted.
Up to 500 Million Customers of Marriott International Hotel Group Involved in Data Breach | Log In/Create an Account | Top | 32 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 2) by SemperOSS on Saturday December 01 2018, @04:01PM (1 child)

    by SemperOSS (5072) on Saturday December 01 2018, @04:01PM (#768643)

    So, in principle, if every European Union state pursues the matter the sum could be 28 x $900 million or 25.2 billion?

    --
    I don't need a signature to draw attention to myself.
    Maybe I should add a sarcasm warning now and again?
    Starting Score:    1  point
    Karma-Bonus Modifier   +1  
    Total Score:   2  

  • (Score: 2) by zocalo on Saturday December 01 2018, @05:30PM

    by zocalo (302) on Saturday December 01 2018, @05:30PM (#768669)
    In theory, yes, if a breach compromised data on citizens of every country in the EU, although the expectation is that ICOs would work together and pool resources in a single case where there was major EU-wide impact, and I guess a company might be able to appeal their way up to the EU's supreme court and then cut a single-fine deal. How well that will work in practice obviously remains to be seen and tested in court.
    --
    UNIX? They're not even circumcised! Savages!