The Devastating Marriot Data Breach
Category :
Information Security
Start Date :
12 December 2023
Author :
Lahiru Pathberiya
Introduction
Marriott's meticulous surveillance system detected a potential breach in its guest reservation database, part of the Starwood brands, prompting a thorough investigation in September 2018.
The breach, dating back to 2014 during Starwood's independent operation, surfaced after a comprehensive forensic inquiry, details of which Marriott hasn't disclosed.
Compounded by Marriott's 2016 acquisition of Starwood, the integration of IT systems delayed breach detection.
The breach, discovered by an unauthorized user despite administrator privileges, reveals its sophistication and raises concerns about Marriott's security infrastructure
If PCI DSS compliance was Implemented
In cybersecurity, smaller independent businesses often face fewer targeted attacks compared to bigger brands, making them less appealing to hackers.
They often partner with trusted technology suppliers who prioritize data protection, following strict guidelines like PCI DSS. This collaboration fortifies defenses against breaches, safeguarding guest information.
PCI DSS plays a crucial role in securing customer data, especially after cases like Marriott's data breach. Adhering to PCI compliance not only assures visitors of their card information's safety but also helps establishments earn trust and banking support.
This mutual commitment to stringent security benefits both businesses and banks, emphasizing the importance of safeguarding sensitive data
