Millions breached at Marriot
Updated: Mar 27, 2019
Hotel group Marriott International has revealed a massive data breach affecting as many as 500 million guests.
The leaked information is believed to have come from an unauthorized party who gained access to the groups Starwood guest authorization database.
Of the 500 million, around 327 million guests have had a combination of name, address, passport number and check-in and check-out information compromised.
The amount of credit card details accessed has not been specified but the hotel group confirmed that it is possible the hackers obtained the right tools to decrypt them.
The breach dates back to 2014, with hackers being able to access the Starwood network since then, although it was not until 8 September that the chain received a notification about an attempt to access the database.
Guests staying on or before 10 September 2018 are likely to be affected.
In a statement, Marriott International said: "Marriott quickly engaged leading security experts to help determine what occurred. Marriott learned during the investigation that there had been unauthorized access to the Starwood network since 2014. Marriott recently discovered that an unauthorized party had copied and encrypted information, and took steps towards removing it. On November 19, 2018, Marriott was able to decrypt the information and determined that the contents were from the Starwood guest reservation database."