Hotels and resorts operator Marriott has notified some of its guests about a significant data breach that may have involved up 5.2 million people.
According to the notice, an unexpected amount of guest information may have been accessed using the login credentials of two employees at a franchise property.
The activity is believed to have started in mid-January this year.
Once the issue was discovered, Marriott said that it immediately disabled the login credentials, began an investigation and started to inform those affected.
Although Marriott’s investigation is ongoing, the company says it currently has no reason to believe that the information involved included Marriott Bonvoy account passwords or PINs, payment card information, passport information, national IDs, or driver’s licence numbers.
At this point, the company believes that the following information may have been compromised for up to about 5.2 million guests, although this was not the case for every guest involved:
- contact details (e.g., name, mailing address, email address, and phone number)
- loyalty account information (e.g., account number and points balance, but not passwords)
- additional personal details (e.g., company, gender, and birthday day and month)
- partnerships and affiliations (e.g., linked airline loyalty programs and numbers)
- preferences (e.g., stay/room preferences and language preference).
Marriott has established a call centre for guests to obtain more information, which can be reached by calling 1800 280 257.
Have you stayed at a Marriott hotel before? Have you received an email telling you that your personal information may have been accessed? Are you worried about your data being used for a phishing scam?
If you enjoy our content, don’t keep it to yourself. Share our free eNews with your friends and encourage them to sign up.