Marriott discloses massive data breach affecting up to 500 million guests
https://www.washingtonpost.com/business/2018/11/30/marriott-discloses-massive-data-breach-impacting-million-guests/ Security experts also questioned the extent and quality of the encryption used by Marriott. The news release specified that the company used encryption to protect credit card numbers, but the company did not specify whether other personally identifiable information --including names, addresses, phone numbers, email addresses and passport numbers -- was protected in this way, as security experts recommend. The company did not immediately respond to a request for comment as to whether all of the data had been encrypted when accessed by the hackers. The company acknowledged, however, a possible failing in the encryption security it had for credit card numbers, saying that it could not "rule out the possibility" that encryption keys were taken by hackers, allowing access to massive troves of data. - - - --Lauren-- Lauren Weinstein (lau...@vortex.com): https://www.vortex.com/lauren Lauren's Blog: https://lauren.vortex.com Google Issues Mailing List: https://vortex.com/google-issues Founder: Network Neutrality Squad: https://www.nnsquad.org PRIVACY Forum: https://www.vortex.com/privacy-info Co-Founder: People For Internet Responsibility: https://www.pfir.org/pfir-info Member: ACM Committee on Computers and Public Policy Google+: https://google.com/+LaurenWeinstein Twitter: https://twitter.com/laurenweinstein Tel: +1 (818) 225-2800 _______________________________________________ nnsquad mailing list https://lists.nnsquad.org/mailman/listinfo/nnsquad