5 Must Know Facts For Your Next Test

1. The Marriott Breach was discovered in September 2018 but occurred over several years, dating back to 2014 when Starwood's systems were first compromised.
2. The breach involved sensitive information such as names, mailing addresses, phone numbers, email addresses, passport numbers, and credit card information of guests.
3. Following the breach, Marriott faced significant scrutiny and legal challenges, resulting in financial penalties and increased focus on improving their cybersecurity measures.
4. Marriott reported that the compromised data did not include the passwords or payment card information of most guests due to encryption and other security measures.
5. This incident underscored the importance of third-party risk management, as it revealed vulnerabilities in how organizations handle data from acquisitions and partnerships.

Review Questions

• What were the primary vulnerabilities that led to the Marriott Breach, and how can similar incidents be prevented in the future?
  • The Marriott Breach was primarily due to inadequate cybersecurity measures surrounding the Starwood guest reservation database after Marriott acquired Starwood Hotels. The attackers exploited vulnerabilities that went undetected for years. To prevent similar incidents, organizations should implement robust security protocols, conduct regular security assessments, and ensure comprehensive training for employees on recognizing potential threats.
• Analyze the impact of the Marriott Breach on consumer trust and corporate responsibility within the hospitality industry.
  • The Marriott Breach had a significant negative impact on consumer trust as customers became more concerned about the safety of their personal information when staying at hotels. This breach highlighted the need for corporate responsibility in safeguarding customer data, pushing hospitality companies to prioritize cybersecurity investments. As a result, many businesses reassessed their data protection strategies and implemented more stringent measures to regain consumer confidence.
• Evaluate how the Marriott Breach has influenced regulatory actions and compliance requirements in the hospitality sector.
  • The Marriott Breach has led to heightened regulatory scrutiny and an evolution in compliance requirements within the hospitality sector. Following this incident, regulators around the world have emphasized stronger data protection laws and standards. Organizations are now more accountable for their cybersecurity practices, leading to increased focus on compliance with regulations such as GDPR and PCI DSS. The breach serves as a critical reminder for all sectors about the legal implications of inadequate data protection and reinforces the need for proactive cybersecurity measures.

© 2024 Fiveable Inc. All rights reserved.

AP® and SAT® are trademarks registered by the College Board, which is not affiliated with, and does not endorse this website.