Marriott says 25 million passport numbers, some unencrypted, involved in massive breach
Marriott International said Friday that 383 million customer records were stolen in a data breach last month, down from the hotel chain’s original estimate of 500 million. Roughly 25.5 million passport numbers also were compromised in the data breach affecting Starwood Hotels reservation system, the company said in a statement. Hackers spent roughly four years inside Starwood’s networks, the company announced Nov. 30. The breach is the one of the largest ever reported and is under investigation by at least five U.S. states as well as European regulators. Some 5.25 million of the 25.5 million passports numbers were stored in plain text, Marriott said Friday, providing hackers with a valuable means of stealing individuals’ identities. The hotel chain previously said it would compensate customers for passport replacements if they can prove they had been victims of fraud. The company also said it believes that approximately 8.6 million encrypted payment cards […]
The post Marriott says 25 million passport numbers, some unencrypted, involved in massive breach appeared first on CyberScoop.