Menu
A/NZ guests in the dark as Marriott recovers from hefty security breach

A/NZ guests in the dark as Marriott recovers from hefty security breach

Hotel giant sets up call centre and free access to WebWatcher in selected countries

Credit: Dreamstime

Five days after revealing a data breach that affected up to 500 million guests across the world, Marriott International is yet to provide the same level of assistance to customers in Australia and New Zealand as those impacted in the US, UK and Canada.

On 30 November, the hotel giant revealed that the data base containing guest information from guests staying at Starwood properties had been accessed.

The unauthorised access started back in 2014 and affected guests staying at W Hotels, St. Regis, Sheraton Hotels & Resorts, Westin Hotels & Resorts, Element Hotels, Aloft Hotels, The Luxury Collection, Tribute Portfolio, Le Méridien Hotels & Resorts, Four Points by Sheraton and Design Hotels, as well as Starwood branded timeshare properties.

A spokesperson for Marriott told ARN that the situation had a global impact but it was not possible to provide a breakdown by market yet.

In order to provide support to guests who may have been affected by the data breach, Marriott has created dedicated call centres in 16 countries, including Australia but not in New Zealand.

Asian countries including China, India, Japan, Russia, South Korea and United Arab Emirates also have a dedicated call centre.

Marriott is also offering a one year subscription to WebWatcher, a tool that monitors internet sites where personal information is shared and generates an alert to the user if evidence of the user's personal information is found. However, this is only available in the US, the UK and Canada.

A Marriott spokesperson told ARN that the company is "looking into options for guests outside" those three countries.

In a statement, Marriott also said that "due to regulatory and other reasons, WebWatcher or similar products are not available in all countries".

As previously reported, Marriot received on 8 September an alert from an internal security tool about an attempt to access the Starwood guest reservation data base, which is located in the US.

Marriott found that data was copied and encrypted and the perpetrator was taking steps towards removing it from the data base.

"On November 19, 2018, Marriott was able to decrypt the information and determined that the contents were from the Starwood guest reservation database," the company said in a statement.

Marriott believes that the copy contains information on up to approximately 500 million guests who made a reservation at a Starwood property.

For approximately 327 million of these guests, the information includes some combination of name, mailing address, phone number, email address, passport number, Starwood Preferred Guest (“SPG”) account information, date of birth, gender, arrival and departure information, reservation date, and communication preferences.

For some, the information also includes payment card numbers and payment card expiration dates, but the payment card numbers were encrypted, according to Marriott.

In order to decrypt this information two components are needed, and Marriott has so far not been able to to rule out the possibility that both were taken.

Other guests' information accessed was limited to name and sometimes other data such as mailing address, email address, or other information.

“We deeply regret this incident happened,” said Arne Sorenson, CEO and president of Marriott. "We fell short of what our guests deserve and what we expect of ourselves.

"We are doing everything we can to support our guests, and using lessons learned to be better moving forward."

Sorenson also assured that Marriott is focused on phasing out Starwood systems and accelerate the ongoing security enhancements to its network.


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags hackMarriottdata breachsecurityStarwood

Featured

Slideshows

The making of an MSSP: a blueprint for growth in NZ

The making of an MSSP: a blueprint for growth in NZ

Partners are actively building out security practices and services to match, yet remain challenged by a lack of guidance in the market. This exclusive Reseller News Roundtable - in association with Sophos - assessed the making of an MSSP, outlining the blueprint for growth and how partners can differentiate in New Zealand.

The making of an MSSP: a blueprint for growth in NZ
Reseller News Platinum Club celebrates leading partners in 2018

Reseller News Platinum Club celebrates leading partners in 2018

The leading players of the New Zealand channel came together to celebrate a year of achievement at the inaugural Reseller News Platinum Club lunch in Auckland. Following the Reseller News Innovation Awards, Platinum Club provides a platform to showcase the top performing partners and start-ups of the past 12 months, with more than ​​50 organisations in the spotlight.​​​

Reseller News Platinum Club celebrates leading partners in 2018
Meet the top performing HP partners in NZ

Meet the top performing HP partners in NZ

HP has honoured its leading partners in New Zealand during 2018, following 12 months of growth through the local channel. Unveiled during the fourth running of the ceremony in Auckland, the awards recognise and celebrate excellence, growth, consistency and engagement of standout Kiwi partners.

Meet the top performing HP partners in NZ
Show Comments