News

Marriott Hotel Chain Has Another Data Breach

Hotel giant Marriott International has confirmed that it has been hit again by a data breach. This time, an unknown attacker broke into one of the company’s facilities and stole 20 GB of data.

It is reported that the hacker managed to compromise only one of the numerous objects of the company, namely the BWI Airport Marriott, and the attacker retained network access for only about six hours. The company emphasizes that the hack did not affect the main Marriott network, and the hacker gained access to only one device.

An attacker used social engineering to trick an employee at a Marriott hotel into giving him access to his computer. At the same time, the attacker did not impersonate any of the Marriott suppliers.representatives of the hotel chain said.

You might also be interested to know that Booking hotels and online check-ins on flights are unsafe.

Although the company does not disclose anything about the stolen data, according to DataBreaches, about 20 GB of information was stolen during the incident. The files mainly contained non-confidential internal business documents, as well as some bank card information. So far, Marriott has not specified whether the attacker stole data belonging to hotel guests or its employees.

The company confirmed that after the attack, the hacker tried to extort money, otherwise threatening to leak the stolen files to the network. Marriott reported that it “did not make any payments and did not provide anything to the attacker,” but has already notified the FBI about the incident and hired a third-party information security company to investigate the incident.

Representatives of the hotel giant add that they will soon notify the relevant regulatory authorities and about 300-400 victims of the incident.

Let me remind you that this is the third Marriott-related data leak in recent years. So, in 2018, it became known that the hotel chain made a large-scale leak that affected, as it was initially thought, half a billion people. And although it later became known that the leak affected “only” 383 million guests, the hackers still spent almost four years in the company’s systems.

In 2020, the company was hacked again, when the attackers compromised the accounts of two employees, which led to the leak of information about 5.2 million people who used the company’s loyalty app.
Sending
User Review
0 (0 votes)
Comments Rating 0 (0 reviews)

Daniel Zimmermann

Daniel Zimmermann has been writing on security and malware subjects for many years and has been working in the security industry for over 10 years. Daniel was educated at the Saarland University in Saarbrücken, Germany and currently lives in New York.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Sending

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Back to top button