Hotel giant Marriott International announced that it was hit by yet another data breach after an unknown hacker breached one of its properties and took 20GB of files.
The hackers only managed to breach one of the chain’s properties, BWI Airport Marriott, and only had access to its network for a finite amount of time.
“This incident only involved one property. The threat actor did not gain access to Marriott’s core network. The access to one device at the property involved only lasted for approximately six hours,” said a Marriott spokesperson.
“The threat actor used social engineering to trick one associate at a single Marriott hotel into providing access to the associate’s computer.”
The hotel chain did not share any information regarding the stolen data. However, it told DataBreaches that the 20GB worth of files stolen during the breach had non-sensitive internal business files and some credit card information.
Marriott is still mum if the hackers exfiltrated private data of hotels guests, its employees, or both.
The hotel chain said that it would notify relevant data regulators and around 300-400 individuals impacted by the breach.
This is the third data breach that Marriott has suffered since 2018.
For more information, read the original story in Bleeping Computer.