Marriot has announced that it has become a victim of a major cyber attack which could have probably leaked information of more than 5.2 million guests. And FYI, Marriot experienced a similar cyber incident in Nov’18 when suspected Chinese hackers reportedly accessed info of more than 383 million guests.
News is out that this time; hackers might have accessed info related to passports, credit cards and other details of more than 5.25 million guests which includes card details of more than 8.6 million guests.
Cybersecurity Insiders has learned that the threat actors who attacked the database of Marriot using login credentials of two employees could have accessed and stolen data related to names, phone numbers, birthdays and loyalty information which included room preferences and the number of days of stay and the purpose of staying in the hotel.
Authorities have stated that the data breach took place somewhere in between Jan-Feb 2020 and the credentials of the two employees have been disabled in March mid-week.
FBI has been informed about the incident and an investigation has been ordered on this note.
All impacted customers will be informed about the new breach in the next two weeks and the Maryland based company is prepared to offer its users a free enrollment to personal information monitoring services for up to a year.
As the Marriot Group has a Cyber Insurance cover, most of the costs to remediate the incident will be borne by the Company which is offering the Insurance.