At the end of February Marriott has disclosed a data breach that has exposed the guest records of 5.2 million people.
For the past three years, it was the second data breach. During the end of February month, the hotel chain Marriott has identified that an unexpectedly large amount of Guest details has been accessed through the login credentials of two of its employees.
We believe this activity started in mid-January 2020. Upon discovery, we confirmed that the login credentials were disabled, immediately began an investigation, implemented heightened monitoring, and arranged resources to inform and assist guests.
Marriott said in a statement.
The data breach has exposed the personal details of the guests including phone number, loyalty account information, name, email address and some more information such as company, gender, dates of births, room preferences, and language preferences.
The Marriott Hospitality giant said that the investigation is going on and there is no evidence that sensitive information such as any PINS, Marriott Bonvoy account passwords, passport information, National information, driving license was compromised.
Upon the discovery of the data breach, the login credentials were disabled and the guests were notified about that by sending an email and multi-factor authentication has been enabled.
Marriott has also set up an online portal where customers can check whether their customer details have been compromised or not and what information was exposed but they are offering affected users to enroll in IdentityWorks, a personal information monitoring service, free of charge for 1 year.