What to Know About Navigating Marriott’s Massive Data Breach

by Jessica Montevago
What to Know About Navigating Marriott’s Massive Data Breach

After the data breach, Marriott has committed to pay for new passports for the as many as 327 million travelers impacted. Photo: Augustine Bin Jumat / Shutterstock.com.


Marriott International is dealing with the fallout after revealing a massive data breach affecting hundreds of millions of customers who stayed at Starwood-branded properties between 2014 and September 10, 2018.

The scope of the hack is one of the largest in the industry. Many are asking how it could have gone undetected for so long.

The world’s largest hospitality company put into place several initiatives for customers whose personal information, including name, date of birth, and address, has been stolen. A dedicated website (info.starwoodhotels.com) and call center have been established to field questions about the incident.

Marriott announced Tuesday it will pay for new passports, with as many as 327 million traveler’s passport numbers exposed in the breach.

“As it relates to passports and potential fraud, we are setting up a process to work with our guests who believe that they have experienced fraud as a result of their passports being involved in this incident,” a Marriott spokesman told MarketWatch. “If, through that process, we determine that fraud has taken place, then the company will reimburse guests for the costs associated with getting a new passport.”

The expenditures for Marriott will continue, as it will likely have to “invest very heavily in improved detection and response-based technologies, such as deception-based solutions, endpoint detection and response, software-defined segmentation, and behavior analytics,” predicts Nick Wyatt, head of tourism at GlobalData, a leading data and analytics company, to prevent such an event from happening again.

Marriott’s woes continue
The trouble for Marriott doesn’t end there. Some of the activity appeared to happen after Europe put into place General Data Protection Regulation (GDPR,) in May 2018, which boosted fines for violations of some types of data security.

In addition, a class-action lawsuit has been filed against Marriott. Murphy, Falcon & Murphy, with their co-counsel Morgan & Morgan, allege that the hotel chain "failed to ensure the integrity of its servers and to properly safeguard consumers' highly sensitive and confidential information." The suit does not disclose how much they are seeking in damages.

Bernstein Liebhard, LLP filed a securities class action lawsuit on Monday, and seeks to recover Marriott shareholders' investment losses.

On Friday, the New York attorney general’s office said it would open an investigation into the breach.

The latest incident has lawmakers calling for stricter laws for companies that do not adequately protect their customers’ personal data. “We must set clear customer data protection standards for all companies — whether they’re hotel chains, online retailers, or big tech — and severe penalties for those who fall short,” Sen. Richard Blumenthal, a Democrat from Connecticut, tweeted. Sen. Mark Warner of Virginia and Sen. Ed Markey of Massachusetts said Congress needs to set hard limits on how much customer data U.S. companies are allowed to store.

What to do if you suspect fraud
If you or your clients suspect they might be a victim of a data breach and fraud, here are some steps you can recommend:

1. Check your accounts for fraudulent activity. It seems obvious, but must people don’t thoroughly check their credit card bill.

2. Enroll in identity theft monitoring software to ensure your personal data is not being used. Marriott is offering guests a free year with WebWatcher, which alerts customers if their personal information is shared on internet sites.

3. To protect against someone opening new credit accounts in your name, issue a security freeze (also known as the credit freeze), to prevent new credit from being issued without your direct permission.

4. With passport numbers part of the personal information that was stolen by hackers, it may be a good idea to apply for a new one. With your passport number, name, and date of birth, anyone can apply for a new passport by reporting the existing one stolen and use it as a proof of identity to open a new bank account or access an existing one.

5. Keep in mind that once you report your passport as potentially compromised, it will immediately become invalid and cannot be used for international travel.

6. Regularly order free copies of your credit file from a service like annualcreditreport.com to make sure that no one is impacting your credit.

  0
  0
Tip of the Day

“There is no way you can be an expert in all areas, so invest in yourself to know the destinations and products you decide to sell. Find a system that works for you and then duplicate it.” - Lindsay Foerster, Travel Advisor

Daily Top List

Largest Airports in the World by Passenger Numbers

1. Hartsfield-Jackson Atlanta International Airport

2. Beijing Capital International Airport

3. Dubai International Airport

4. Los Angeles International Airport

5. Tokyo Haneda Airport

Source: InternationalAirportReview

TMR Recommendations
Top Stories
The Unstoppable Trend: Solo Travel Growing and Going Just About Anywhere
The Unstoppable Trend: Solo Travel Growing and Going Just About Anywhere

Many suppliers are reducing or eliminating solo travel supplements, prompting even more solo travelers to book trips.

National Geographic Family Journeys with G Adventures Open for Booking
National Geographic Family Journeys with G Adventures Open for Booking

The trips are all led by two specially trained Chief Experience Officers who are trained to cater the trips to both the interest of the adults and the children.

Adventures by Disney Reveals Lineup of 2020 Itineraries
Adventures by Disney Reveals Lineup of 2020 Itineraries

Among the offerings is a 10-day trip to Egypt, including a new three-part tour and experiences tailored specifically for adults.

Journese Launches ‘Cancel for Any Reason’ with Commission Protection
Journese Launches ‘Cancel for Any Reason’ with Commission Protection

Good news for travel advisors, the plan features 100% commission protection and a simplified cancellation process.

Tour Operators Predict Rapid Recovery After Notre Dame Fire
Tour Operators Predict Rapid Recovery After Notre Dame Fire

Unable to say for sure, most tour operators suspect the enthusiasm for France may actually be heightened over the tragedy.

Tour Operators Frustrated by Vague Cuba Policy Announcement
Tour Operators Frustrated by Vague Cuba Policy Announcement

Little is known about what the new Trump administration policy changes will mean for American travelers to Cuba.

News Briefs
TMR Report Cards & Outlooks
Advertiser's Voice
Advertiser's Voice: Agents - Thank You!