Marriott International confirmed Tuesday that an unknown criminal hacker broke into its computer networks and then attempted to extort the company. The incident was first reported by databreaches.net and has been claimed to be the work of an ‘international group working for about five years’, according to the site. Now this has not been the first time that Marriott has been at the centre of a data breach. Several years ago they went public with a massive data breach, and the Chinese were thought to be the threat actors in that case. Regardless of who was behind it, it led to them getting fined massively as a result. But it didn’t stop them from getting pwned again. And there’s a few more incidences of Marriott getting pwned that I’m not listing here.
Saryu Nayyar, CEO and Founder of Gurucul had this comment:
“A primary mechanism being used by adversaries is social engineering. It’s simple and effective. And it means that initial compromise is dependent on human behaviors and is therefore impossible to prevent 100% of the time. All it takes is one successful compromise to circumvent most preventive controls. What is required is a stronger detection program that also monitors for and identifies risky access controls, entitlements and user behaviors and associated abnormal or deviant activity. This includes potential threats from the inside, not just outside threats. More advanced and adaptable technologies that use machine learning and artificial intelligence to compensate for threat actor activity and human behavior have proven to be more effective at stopping successful attacks.”
Clearly Marriott has a problem because they keep getting pwned. That’s why I don’t stay with them when I travel anymore as I was personally affected by one of the breaches. They really need to get their head into the game as this is completely unacceptable.
External Link: Marriott Has Yet Again Been Pwned