Massive Marriott Data Breach Affects up to 500 Million Guests
This post contains references to products from one or more of our advertisers. We may receive compensation when you click on links to those products. Terms apply to the offers listed on this page. For an explanation of our Advertising Policy, visit this page.
Marriott International said Friday the data of up to 500 million of its guests has been stolen from its Starwood guest reservation database. The data breach is likely one of the largest ever in US history.
The hotel chain, which is the world’s largest, said in a release on Friday that it was first alerted to the hack in September after receiving notification from an internal security tool that there was an attempt to access customers’ data. The company started an investigation and learned that hackers have had access to Starwood guest database since 2014.
For four years, the hackers stole and encrypted customers’ personal information, creating their own database of Starwood guests’ data. It took Marriott until Nov. 19 to decode most of the breached information.
For about 327 million guests, the hackers absconded with “some combination of name, mailing address, phone number, email address, passport number, Starwood Preferred Guest (“SPG”) account information, date of birth, gender, arrival and departure information, reservation date, and communication preference,” Marriott said.
An undisclosed number of customers also had their payment card numbers and expiration dates breached. That information was encrypted in two parts, but the hotel chain said it can’t rule out that both were stolen and decoded.
For the remaining chunk of guests, the stolen information “was limited to name and sometimes other data such as mailing address, email address, or other information,” Marriott said.
“We are still investigating the situation so we don’t have a list of specific hotels. What we do know is that it only impacted Starwood brands,” Marriott spokesperson Jeff Flaherty told Reuters.
The hotel chain apologized to customers and has taken steps to address the security issues. Marriott is working with law enforcement on the breach. It also is providing affected customers with one free year of an information protection service, called WebWatcher. The company will start contacting affected customers by email on Friday.
Featured image by Roberto Machado Noa/LightRocket via Getty Images.
*This post has been updated with Marriott’s spokesperson’s comments.
Welcome to The Points Guy!
Earn 90,000 bonus miles after you spend $3,000 in purchases on your new Card in your first 3 months. Offer ends 8/3/2022.
With Status Boost™, earn 10,000 Medallion Qualification Miles (MQMs) after you spend $25,000 in purchases on your Card in a calendar year, up to two times per year getting you closer to Medallion Status. Earn 3X Miles on Delta purchases and purchases made directly with hotels, 2X Miles at restaurants and at U.S. supermarkets and earn 1X Mile on all other eligible purchases. Terms Apply.
- Limited Time Offer: Earn 90,000 bonus miles after you spend $3,000 in purchases on your new Card in your first 3 months. Offer ends 8/3/2022.
- Earn up to 20,000 Medallion® Qualification Miles (MQMs) with Status Boost® per year. After you spend $25,000 in purchases on your Card in a calendar year, you can earn 10,000 MQMs up to two times per year, getting you closer to Medallion® Status. MQMs are used to determine Medallion® Status and are different than miles you earn toward flights.
- Earn 3X Miles on Delta purchases and purchases made directly with hotels.
- Earn 2X Miles at restaurants worldwide including takeout and delivery in the U.S., and at U.S. supermarkets.
- Earn 1X Miles on all other eligible purchases.
- Receive a Domestic Main Cabin round-trip companion certificate each year upon renewal of your Card. Payment of the government imposed taxes and fees of no more than $80 for roundtrip domestic flights (for itineraries with up to four flight segments) is required. Baggage charges and other restrictions apply. See terms and conditions for details.
- Enjoy your first checked bag free on Delta flights.
- Fee Credit for Global Entry or TSA PreCheck® after you apply through any Authorized Enrollment Provider. If approved for Global Entry, at no additional charge, you will receive access to TSA PreCheck.
- Enjoy an exclusive rate of $39 per person per visit to enter the Delta Sky Club® for you and up to two guests when traveling on a Delta flight.
- No Foreign Transaction Fees.
- $250 Annual Fee.
- Terms Apply.
- See Rates & Fees