Marriott International stated today that it fell victim to a data breach, the second major data breach in the past two years for the organization. Near the end of February, the login credentials of two franchise employees allowed unauthorized access to guest’s names, emails, phone numbers, birthdays, and loyalty account details. It is estimated that 5.2 million guests may have been exposed.
The chain noticed the issue when they saw the two logins accessed “an unexpected amount of guest information.” They have since disabled the two compromised logins.
Marriott is still investigating the situation, but they do not believe any credit card, passport, or driver’s license numbers have been exposed. The company is sending emails to those they know are affected and offering a year of identity monitoring.