Have you stayed at a Sheraton, Westin, St. Regis, Element, Aloft, W Hotel, Luxury Collection, Le Meridien or Four Points anywhere in the world in the last four years? There is a strong chance you are a winner in the lucky dip that is now known as the Marriott Hack. This is extraordinary. The hackers were inside the database for two years before the group was bought by Marriott and for two years after the purchase.
Clever little creeps, too, as they encrypted the data and exported it at their leisure to avoid security procedures. Marriott released the news last week, estimating that personal information on about 500 million guests was taken, including various combinations of name, address, phone number, email address, date of birth, gender, trip and reservation information, passport number, and Starwood Preferred Guest account information. They are currently being coy about how many credit card numbers were stolen.
What will the hackers do with the information? Everything from credential stuffing to identity theft. Also, they now have four years of data on the travel patterns of corporate executives, government officials and people having illicit affairs at upmarket venues. Expect thieves to find new ways to exploit this information.
Read more at WIRED: click here