Marriott International is facing scrutiny for multiple data breaches that exposed sensitive information of more than 344 million customers globally. In one settlement, Marriott reached an agreement with 50 US attorneys general, acknowledging that 131.5 million customers had their information compromised. Another settlement with the Federal Trade Commission will require Marriott and its subsidiary, Starwood Hotels & Resorts, to implement a new security system to prevent future breaches. The breaches, occurring between 2014 and 2020, allowed hackers to access personal data including passport information, payment card numbers, and loyalty numbers. Cybersecurity issues have plagued Marriott and Starwood for years, with previous incidents and fines in both the US and the UK.
