Hotel chain Marriott International clearly still has work to do on its security after the company suffered a second data breach exposing the details of millions more guests.
As Reuters reports, this latest breach of security is thought to have happened in mid-January using the login details of two employs “at a franchise property.” The data of 5.2 million hotel guests remained exposed until the end of February. The breach was flagged when someone noticed, “an unexpected amount of guest information may have been accessed using the login credentials,” according to the company.
Marriott confirmed that the guest information exposed includes contact details (name, mailing address, email address, and phone number), loyalty account information (account number and points balance), additional personal details (company, gender, birthday day and month), partnerships and affiliations (linked airline loyalty programs and numbers), and preferences (stay/room preferences and language preference). Importantly, Marriott believes there was no access to “Marriott Bonvoy account passwords or PINs, payment card information, passport information, national IDs, or driver’s license numbers.”
If you’re worried your details may have been exposed, check your inbox. Marriott is sending out emails to guests impacted by the breach advising them oo steps to take. There’s also a dedicated support website with details of call center numbers if you wish to speak to someone directly.
The last Marriott breach occurred in Nov. 2018 and ended up exposing the details of 383 million guests, including 25.5 million passport numbers, of which 5.25 million were unencrypted. That time, it was unauthorized access to a guest reservation database for Starwood Hotels.