Data Breaches

Breach Subtotal

Breach Type: all
Organization Type: all
Year(s) of Breach: all
Company or Organization:
Date Made Public:
November 30, 2018
Company: Marriott International
Location: , Maryland
Type of breach:
HACK
Type of organization:
BSR
Records Breached:
327,000,000

Marriott International disclosed a massive security breach of the reservations system for its Starwood Hotels and Resorts brand, a hack it said Friday may have compromised private info on up to 500 million guests.

According to Marriott, for around 327 million Starwood guests, the database included such personal information as name, mailing address, phone number, email address, passport number, date of birth, and gender. For some Starwood customers, the hacked database also stored payment card numbers and expiration dates, although Marriott said that information was encrypted.

Information Source:
Media
Date Made Public:
February 16, 2018
Company: Marriott International Inc.
Location: Bethesda, Maryland
Type of breach:
HACK
Type of organization:
BSR
Records Breached:
27

Specifically, on February 5, 2018, Mariott discovered that between January 23, 2018 and February 5, 2018, a third party obtained unauthorized access to employee information. A third party successfully posed as a Marriott employee by providing valid employee credentials in order to obtain access to Marriott employee Human Resources accounts. Through  investigation,  have determined that third party had access to the employees' direct deposit information, pay statement and W2 information. Mariott has taken steps to block access to compromised employee accounts and are actively monitoring for fraudulent activity.

Breached records include SSN and Account #.

Information Source:
Security Breach Letter
Date Made Public:
December 28, 2005
Company: Marriott International Inc.
Location: Orlando, Florida
Type of breach:
PORT
Type of organization:
BSR
Records Breached:
206,000

It is unclear whether backup computer tapes with credit card account information and Social Security numbers were lost or stolen from headquarters during November. Employees and time-share owners and customers were affected.

Information Source:
Dataloss DB
CSV