In 2018, the Marriott International hotel chain suffered a data breach that exposed the personal information of over 500 million guests. The breach, which was one of the largest in history, was the result of a sophisticated cyber attack that had been ongoing for several years before it was discovered.
The attackers had gained access to Marriott’s systems through a breach at a subsidiary company, Starwood Hotels & Resorts, which Marriott had acquired in 2016. Once inside, the attackers were able to steal a vast amount of sensitive data, including names, addresses, phone numbers, passport numbers, and credit card information.
The stolen data was later discovered for sale on the dark web, where it was being offered to other criminals for use in identity theft and other forms of fraud. The fallout from the attack was severe, with Marriott facing multiple investigations and lawsuits from affected individuals, regulators, and shareholders. The company’s stock price plummeted, and it was forced to implement costly security upgrades to its systems.
To make matters worse, it was later revealed that Marriott had been warned about potential vulnerabilities in its systems before the attack, but had failed to take adequate action. This lack of action, combined with the company’s slow response to the breach, only served to compound the damage and outrage caused by the attack.
In the end, the Marriott data breach was a cautionary tale about the dangers of failing to adequately protect sensitive data and the potentially catastrophic consequences of such a failure. It also highlighted the need for companies to prioritize cybersecurity and to have robust plans in place to respond to and recover from cyber attacks.
Regular testing can avoid situations like this. Learn more about how to be PROACTIVE and how Ethical Hacking can help your business, reach out to our team for a no obligation call today: https://nivee.ca/free-quote/