On Tuesday, Marriott disclosed another customer data breach of its hotel chain. It is reported that the incident occurred in mid-January this year but was not discovered until late February. Investigation revealed that “an unexpected amount of guest information may have been accessed using the login credentials of two employees at a franchise property”, which led to the disclosure of 5.2 million customer information. After detecting the security breach, Marriott claimed that intruders had been barred from access.
The exact details of the leaks may vary from customer to customer. Marriott stated that the detail was leaked, including customer gender, birthday, organization, membership account points, phone, email, mailing address, and name.
Although Marriott’s investigation is ongoing, the company currently has no reason to believe that the information involved included Marriott Bonvoy account passwords or PINs, payment card information, passport information, national IDs, or driver’s license numbers.