data breach
Marriott International Resolves State Attorneys General and Federal Trade Commission Investigations into 2018 Starwood Database Security Incident
MARRIOTT INTERNATIONAL, INC. | October 10, 2024
Marriott International, Inc. (NASDAQ: MAR, “Marriott”) has reached final resolutions with the Federal Trade Commission (FTC) and 49 U.S. State Attorneys General and the District of Columbia in relation to the 2018 Starwood Hotels and Resorts Worldwide guest reservations database security incident. The resolution with the State Attorneys General includes an agreement to pay $52 million. As indicated in the agreements with the FTC and the State Attorneys General, Marriott makes no admission of liability with respect to the underlying allegations. As part of the resolutions with the FTC and the State Attorneys General, Marriott will cont...
MGM Resorts Update on Recent Cybersecurity Issue
MGM Resorts International | October 6, 2023
LAS VEGAS, Oct. 6, 2023 -- MGM Resorts International ("MGM Resorts" or the "Company") recently disclosed that the Company identified a cybersecurity issue affecting certain of its systems and that its investigation into the issue was ongoing. On or around September 29, 2023, MGM Resorts determined that an unauthorized third party obtained personal information of some of its customers on September 11, 2023. The affected information included name, contact information (such as phone number, email address, and postal address), gender, date of birth, and driver's license number. For a limited number of customers, Social Security number and...
Analyzing MGM and Caesars Cyberattacks: Lessons in Cybersecurity Preparedness
Mark Munger | September 26, 2023
By Mark Munger In the wake of recent cyberattacks targeting industry giants MGM Resorts and Caesars Entertainment, it’s imperative to examine both the commonalities and disparities in these incidents. These high-profile breaches offer valuable insights into the ever-evolving realm of cybersecurity threats within the gaming industry. Furthermore, they underscore the importance of proactive cybersecurity measures and preparedness. General Considerations Before delving into the specifics of these cyberattacks, it’s essential to emphasize the significance of proactive cybersecurity measures. Post-breach recovery efforts are undoubted...
MGM Resorts International Statement on Cybersecurity Issue
MGM Resorts International | September 13, 2023
Las Vegas, Sept. 12, 2023 — MGM Resorts International (the "Company" or "MGM Resorts") today issued the following statement: "MGM Resorts recently identified a cybersecurity issue affecting certain of the Company's systems. Promptly after detecting the issue, we began an investigation with assistance from leading external cybersecurity experts. We also notified law enforcement and are taking steps to protect our systems and data, including shutting down certain systems. Our investigation is ongoing, and we are working diligently to resolve the matter. The Company will continue to implement measures to secure its business operations and ...
Hotel Data Security Update: Time Is Short – Reporting Your Data Breach
Jim Butler | July 31, 2023
By Jim Butler and the Global Hospitality Group® This month, the Securities and Exchange Commission (SEC) announced new rules requiring companies who experience a cybersecurity attack to publicly disclose the impact of the attack within four days. Hotel companies whose securities are registered with the SEC should take note of these regulations and develop a robust incident response plan. Bob Braun, senior member of JMBM’s Global Hospitality Group® and Co-Chair of the Firm’s Cybersecurity & Privacy Group, outlines the new regulations below. Time is Short – Reporting your Data Breach by Bob Braun, Hotel Lawyer Over the pa...
Choice Hotels Notifies Guests of Inadvertent Disclosure Issue
Choice Hotels | December 2, 2019
ROCKVILLE, Md., Dec. 2, 2019 -- Choice Hotels International, Inc. (NYSE: CHH) has taken steps to address and notify guests of an issue involving inadvertent disclosure of certain guest information to third parties with whom Choice has business relationships. While most guests involved have been contacted already, the company is issuing this press release to alert the small number it could not identify. The issue occurred very infrequently from June 2015 – March 2016 (likely less than 25 times), but information to identify specific guests involved during this timeframe is unavailable. Overall, this issue occurred approximately 88,000 t...
October: A Month Dedicated to Cybersecurity
Vizergy | October 21, 2019
Halloween isn’t the only spooky theme in October. The witches, goblins, and ghouls have to share this month with something just as scary… cybersecurity hackers. Recognized every October, National Cybersecurity Awareness Month (NCSAM) is a collaborative effort between government and industry to raise awareness about the importance of cybersecurity and to ensure that all Americans have the resources they need to be safer and more secure online. Cybersecurity: What is it? Cybersecurity is the protection against the criminal or unauthorized use of electronic data. Cybersecurity threats can come from various channels, such as phishing attack...
Drury Hotels Provides Update Regarding Third-Party Service Provider Security Incident
Drury Hotels Company | October 2, 2019
ST. LOUIS, Oct. 1, 2019 -- Drury Hotels announced on May 24, 2019 that it was notifying certain guests of a security incident that occurred on the network of a third-party technology service provider. The incident involved information related to transactions made through some third-party online booking websites. Despite the service provider's assurances that the incident only involved transactions sent through the service provider's network between December 29, 2017 and March 13, 2019, the service provider has now informed Drury Hotels that transactions between December 28, 2017 and June 2, 2019 are involved. After the service provider...
