Skip to main content
  1. Home
  2. News

Marriott data breach: What to know and how to protect your data

By
 

Marriott says customers’ names, addresses, phone numbers, and other personal details were accessed in a large data breach — the second to hit the hotel chain in less than two years.

Recommended Videos

In a statement Tuesday, Marriott announced that the information was accessed using the login credentials of two employees at a franchise property at the end of February. Among the stolen data could be:

  • Contact information such as names, mailing addresses, email addresses, and phone numbers
  • Loyalty account information
  • Personal details like gender and the day and month of customers’ birthdays.
  • Linked loyalty program affiliations
  • User preferences

Marriott said not all of that information was exposed for every guest and that credit card data, passport information, and passwords were not accessed.

Marriott Hotel
Getty Images

The hotel chain has sent emails to guests who were affected by the breach, adding that up to 5.2 million customers may have been affected.

Related

Marriott has also set up a website for customers to check to see if their data was exposed.

So what can you do to protect your information? Here are a few steps you can take:

First, Check Marriott’s dedicated website to see if your data was affected and if so, what data was exposed.

If your information was accessed, Marriott is offering access to personal information monitoring service IdentityWorks for one year for free. IdentityWorks is run by Experian and allows you to identify information that you would like to have the service monitor.

Customers have until June 30, 2020 to enroll. U.S. residents can enroll on the Experian IdentityWorks website using the activation code sent in the email from Marriott. Non-U.S. residents can sign up using a separate site.

Customers can contact a call center set up by Marriott for further details. The U.S. hotline can be reached at 1-800-598-9655 from 8 a.m. to 8 p.m. EST, Monday through Friday.

This marks the second major data breach for Marriott in recent years. A data breach possibly dating back to 2014 targeted a guest reservation system operated by Starwood, a hotel and leisure company that Marriott acquired in 2016. The breach was only discovered in 2018 and may have affected 339 million guests globally.

Topics
Paul Squire
Paul Squire
Former Digital Trends Contributor
Paul is the News Editor at Digital Trends. Before joining DT, Paul spent 3 years as an editor on the New York Post's digital…

Editors’ Recommendations

This vaccine passport app data breach is a cautionary tale
Man frustrated at computer.

A security blunder by proof-of-vaccination app Portpass provides a reminder that third-party apps may not protect your privacy and security. According to CBC News, Portpass exposed potentially hundreds of thousands of users’ personal information on its unsecured website.

After receiving a tip that the user profiles on the app’s website were accessible by members of the public, CBC verified the claim. While on the website, CBC was able to see users’ personal information, email addresses, blood types, birthdays, phone numbers, and photo identification, including driver’s licenses and passports.

Read more
T-Mobile confirms hack, investigates whether customer data was stolen
A T-Mobile store.

T-Mobile has confirmed that its computer systems were accessed without permission and says it's now conducting an investigation to determine the full extent of the hack.

The announcement follows claims on Sunday, August 15, that a hacker was in possession of data belonging to 100 million T-Mobile customers and was trying to sell it via an underground forum.

Read more
T-Mobile investigating claims of massive hack involving customer data
T-Mobile storefront with corporate signage.

T-Mobile says it’s investigating claims of a major data breach that may affect as many as 100 million of its customers.

A message spotted on an underground forum on Sunday, August 15, came from someone claiming to be in possession of personal data belonging to 100 million people. The message made no mention of T-Mobile, but when the poster was contacted by news site Motherboard, it became apparent that the mobile company's customers were at the center of the alleged hack. The figure of 100 million would be remarkable as it's almost equal to T-Mobile's entire customer base.

Read more