Marriott faces a $124 million fine for failing to protect customer data. Here is the summary of the news about the fine for the Marriott data breach:
- The hotel chain said in a regulatory filing Tuesday that Britain’s Information Commissioner’s Office intends to impose a £99 million ($124 million) fine under the General Data Protection Regulation (GDPR)
- The regulator said that the penalty stems from a Marriott data breach that exposed 339 million guest records globally, including 30 million Europeans. Marriott has said the hack began in 2014 but was only discovered in November 2018, shortly before it reported the breach.
- It’s the second major fine proposed by the regulator this week. On Monday, the ICO said that British Airways (ICAGY) faces a £183.4 million ($230 million) fine after a breach compromised data on 500,000 customers.
Another Day, Another #GDPR Fine
World’s largest Hotel Chain “Marriott International” Faces $123 Million Fine Over Starwood #DataBreach That Exposed Personal Data of Nearly 339 Million Guestshttps://t.co/c0iRPqxgIY
UK’s ICO Recently Also Fined British Airways with £183 Million pic.twitter.com/4n2Fwopnwl
— The Hacker News (@TheHackersNews) July 9, 2019
Saryu Nayyar, CEO at Gurucul:
“The size and scope of the Starwood Marriott data breach makes it the most severe such incident in 2018. According to the company’s own statements the attackers had unauthorized access” to key systems with sensitive data.
Marriott seriously failed in its responsibility to identify and contain the incident. Other organisations should learn from this breach that new types of cyber defense strategies are required that leverage machine learning. Enterprises need to fight automated cyberattacks with modern technology that can predict, detect and stop abnormal and suspicious activities before data can be exfiltrated.”
External Link: Experts Views On ICO Fines For BA And Marriott