Social Network For Security Executives: Network, Learn & Collaborate
The Marriott fine of $ 124 Million comes right after a record fine of $230 million imposed by ICO on Monday following the British Airways Data Breach. The ICO's investigation found that the British Airways breach exposed personal data for 500,000 customers. It involved attackers installing malicious code on British Airways's site that rerouted customers to a phishing site that stole their personal details and payment card details.
The Marriott data breach persisted for 4 long years before being discovered and exposed approximately 339 million customer records globally. The breach exposed information like names, phone numbers, email addresses, encrypted payment card information and more.
U.K. Information Commissioner Elizabeth Denham said British Airways failed to put appropriate safeguards in place to protect customer data. "That's why the law is clear - when you are entrusted with personal data you must look after it. Those that don't will face scrutiny from my office to check they have taken appropriate steps to protect fundamental privacy rights."
What Are the Losses?
How Can Your Organization Prevent This?