The Register: Marriott Hotels admits to third data breach in 4 years

The Register: Marriott Hotels admits to third data breach in 4 years. “Crooks have reportedly made off with 20GB of data from Marriott Hotels, which apparently included credit card info and internal company documents. The unnamed crew behind the theft told DataBreaches it broke into a server at the Marriott hotel at Baltimore-Washington International Airport in Maryland late last month.”

USA Today: Hilton, Marriott donate free hotel rooms for medical workers responding to coronavirus crisis

USA Today: Hilton, Marriott donate free hotel rooms for medical workers responding to coronavirus crisis. “Beginning [yesterday], Hilton and American Express will donate 1 million hotel rooms for medical professionals working on the coronavirus pandemic response. The rooms will be available to doctors, nurses, paramedics, emergency medical technicians and other workers through the end of May, according to Hilton.”

New York Times: Marriott Concedes 5 Million Passport Numbers Lost to Hackers Were Not Encrypted

New York Times: Marriott Concedes 5 Million Passport Numbers Lost to Hackers Were Not Encrypted. “Marriott International said on Friday that the biggest hacking of personal information in history was not quite as big as first feared, but for the first time conceded that its Starwood hotel unit did not encrypt the passport numbers for roughly five million guests. Those passport numbers were lost in an attack that many outside experts believe was carried out by Chinese intelligence agencies.”

Krebs on Security: What the Marriott Breach Says About Security

Krebs on Security: What the Marriott Breach Says About Security. “We don’t yet know the root cause(s) that forced Marriott this week to disclose a four-year-long breach involving the personal and financial information of 500 million guests of its Starwood hotel properties. But anytime we see such a colossal intrusion go undetected for so long, the ultimate cause is usually a failure to adopt the most important principle in cybersecurity defense that applies to both corporations and consumers: Assume you are compromised.”

Bloomberg: Marriott Hit by Starwood Hack That Ranks Among Biggest Ever

Bloomberg: Marriott Hit by Starwood Hack That Ranks Among Biggest Ever. “The attack is troubling not just because of its sheer size, but also the level of detail potentially stolen by the attackers. The hack affects some 500 million guests, and for about 327 million of them, the data included passport numbers, emails and mailing addresses, Marriott said. Some credit card details may also have been taken.”

Boing Boing: Marriott fires employee for “willfully liking” a tweet in support of Tibetan independence

Boing Boing: Marriott fires employee for “willfully liking” a tweet in support of Tibetan independence. “Marriott has fired one of its social media managers because the employee ‘wrongfully liked’ a tweet from Friends of Tibet, a group that supports Tibetan independence from China. The sacking started when Marriott contracted with an outside company to perform a customer satisfaction survey, on which a multiple choice question about which countries guests had used the chain’s hotels in listed “Tibet, Hong Kong, Macau and Taiwan” as separate countries. Describing these territories as independent countries is an offense under Chinese law.”