Marriott Says New Data Breach Affects 5.2 Million Guests

(do not use again)

by Dee-Ann Durbin, The Associated Press, March 31, 2020

Marriott says guests’ names, loyalty account information and other personal details may have been accessed in the second major data breach to hit the company in less than two years.

Marriott said Tuesday approximately 5.2 million guests worldwide may have been affected. The information taken may have included names, addresses, phone numbers, birthdays, loyalty information for linked companies like airlines and room preferences. Marriott said it’s still investigating but it doesn’t believe credit card information, passport numbers or driver’s license information was accessed.

FREE Virtual Event

Pivoting Back to Travel: Phase 4

Are you prepared to guide your clients through the “new normal” of travel? Join us December 15, 2020 from 1pm-2:20pm EST for Pivoting Back to Travel: Phase 4. The upcoming installment of our FREE virtual series will feature presentations from the Cayman Islands, Dominican Republic, and Seabourn on their most up-to-date travel procedures, health & safety protocols they’ve implemented to keep guests safe, activities that are open to visitors, what your clients need to know while on their trip and more! Visit www.pivotingbacktotravel to view the full agenda and register for your FREE pass.

Marriott said it noticed an unexpected amount of guest information was accessed at the end of February using the login credentials of two employees at a franchised property. The company said it believes the activity began in mid-January.

Marriott has disabled those logins and is assisting authorities in their investigation. The company didn't say whether the employees whose logins were used were suspected.

In November 2018, Marriott announced a massive data breach in which hackers accessed information on as many as 383 million guests. In that case, Marriott said unencrypted passport numbers for at least 5.25 million guests were accessed, as well as credit card information for 8.6 million guests. The affected hotel brands were operated by Starwood before it was acquired by Marriott in 2016.

The FBI led the investigation of that data theft, and investigators suspected the hackers were working on behalf of the Chinese Ministry of State Security, the rough equivalent of the CIA.

Marriott said Tuesday it has informed guests of the new data breach. The Bethesda, Maryland-based company is offering affected guests free enrollment in a personal information monitoring service for up to one year.

“Marriott also remains committed to further strengthening its protections to detect and remediate incidents such as this in the future,” the company said in a statement.

 

This article was written by DEE-ANN DURBIN from The Associated Press and was legally licensed through the NewsCred publisher network. Please direct all licensing questions to [email protected].

Related Articles

Matthew Upchurch: Leading Luxury Travel in 2020

Call to the Wild: Great Outdoors an Escape in Tough Times

Virtual Hotel and Destination Experiences

MMGY CEO: Travel Recovery to Happen Sooner Than Expected

Suggested Articles:

Rosewood Washington, D.C. recently unveiled six new townhouses as the final component of the property’s recent renovation. See more here.

Royal Caribbean Group's brands—Royal Caribbean, Celebrity Cruises, Silversea and Azamara—have paused operations through at least February 28, 2021.

Bulgari's 11th hotel will be located in Miami Beach, making it the brand's first-ever property in the United States. It's slated to open in 2024.