• Likes
  • Followers

Trending

  • Sandisk: 4TB Extreme Pro SSDs can lose data, firmware fix on the way
  • Microsoft is testing Edge for Gamers mode in browser
  • Deleted Twitter messages reappear online without user input
  • WhatsApp releases feature to edit already sent messages
  • Chinese researchers brute force fingerprint scanner Android smartphones
  • Minisforum announces Venus mini PC with Ryzen 9 7940HS CPU for 719 euros
  • Intel proposes x86-S instruction set architecture with 64bit support only
  • China bans use of Micron chips for ‘critical infrastructure’
  • Apple rejects a quarter of updates and new apps in App Store
  • ‘Meta in talks to collaborate with augmented reality company Magic Leap’

TechWarrant.Com TechWarrant.Com - Best Technology Stuff from Around the World

  • Home
  • Apps
  • Games
  • Informative
  • Internet
    • Extensions & Addns
    • Web Site
  • Gadgets
  • News
  • Review
  • Vehicles & Robots
  • Top Lists
  • Tips & Tutorial
  • Misc.
  • Contact
TechWarrant
  • Home
  • News
  • UK privacy authority fines hotel chain of 20.5 million euros for data breach
News

UK privacy authority fines hotel chain of 20.5 million euros for data breach

By admin On Oct 30, 2020

The British Information Commissioner’s Office fines hotel chain Marriott of £ 18.4 million, equivalent to EUR 20.5 million. Marriott had not done enough to secure a system when it had a massive data breach, according to the ICO.

After an investigation, the British privacy authority comes to the conclusion that Marriott had not taken the correct technical and organizational measures to adequately protect customers’ data, as required by the European General Data Protection Regulation. At the time of the discovery of the data breach, in 2018, the UK was still part of the EU, so the GDPR applied.

Data from 339 million customer accounts was disclosed in 2018 in an attack on Marriott’s Starwood Hotels and Resorts Worldwide Inc, including unencrypted passport data. The ICO describes that the attackers installed a web shell on a device in the Starwood reservation system and could remotely get a remote access trojan and other malware into the network via this route. In this way they were able to obtain login data from other accounts, open databases with customer information and divert this data.

According to the ICO, Marriott should have done more to secure the affected reservation system. The attack already took place in 2014. Marriott took over Starwood in 2016 and the data breach was discovered in 2018. Marriott argued, among other things, that the chain wanted to replace the reservation system in early 2018 because of indications that this would be unsafe. The ICO notes that this would have been a year and a half after the acquisition, which the authority calls a long period of data processing, and that the final replacement did not take place until the end of 2018.

Prev Post

Software update: MusicBrainz Picard 2.5.1

Next Post

Apple is working on its own search engine as an alternative to Google Search

Recent Posts
  • Sandisk: 4TB Extreme Pro SSDs can lose data, firmware fix on the way
  • Microsoft is testing Edge for Gamers mode in browser
  • Deleted Twitter messages reappear online without user input
  • WhatsApp releases feature to edit already sent messages
  • Chinese researchers brute force fingerprint scanner Android smartphones
  • Minisforum announces Venus mini PC with Ryzen 9 7940HS CPU for 719 euros
  • Intel proposes x86-S instruction set architecture with 64bit support only
  • China bans use of Micron chips for ‘critical infrastructure’
  • Apple rejects a quarter of updates and new apps in App Store
  • ‘Meta in talks to collaborate with augmented reality company Magic Leap’
© 2023 - TechWarrant. All Rights Reserved.
Sign in

Welcome, Login to your account.

Forget password?
Sign in

Recover your password.

A password will be e-mailed to you.