- Joined
- Mar 3, 2018
- Messages
- 1,713
Marriott International suffered a big data breach involving the reservation database for Starwood Properties last week. The attackers allegedly had "unauthorized access" since 2014, and onlookers assumed there were no indications that Starwood's systems were compromised until this year. But, the Wall Street Journal points out that Starwood suffered from a smaller, unrelated data breach in 2015. According to their security consultants, an investigation into the 2015 hack should've provided ample opportunity to discover the other intruders, but the security audit apparently missed it. Back in 2015, Starwood said "We want to assure our customers that we have implemented additional security measures to help prevent this type of crime from reoccurring."
"With all the resources they have, they should have been able to isolate hackers back in 2015," said Andrei Barysevich, a researcher with the security company Recorded Future, in the Wall Street Journal report. A spokeswoman for Marriott said everyone involved would have preferred the incident was identified earlier. "When there is a concern that payment cards are at risk, forensic investigations start looking at devices that process payment cards and follow the evidence from there."
"With all the resources they have, they should have been able to isolate hackers back in 2015," said Andrei Barysevich, a researcher with the security company Recorded Future, in the Wall Street Journal report. A spokeswoman for Marriott said everyone involved would have preferred the incident was identified earlier. "When there is a concern that payment cards are at risk, forensic investigations start looking at devices that process payment cards and follow the evidence from there."