Marriott Starwood Data Breach May Affect 500 Million Guests


Facebook Tweet mail
blog post author image
Written by Alayna Okerlund | Last Updated January 10th, 2020
Alayna Okerlund is a Senior Content Strategist at She is proud of her journalism background and strives to create informative, interesting online content. Professionally, she plans to further develop her writing skills and continue building up her SEO knowledge base. When she's not working, she enjoys being in nature and trying new foods.

guest in hotel room

Marriott announced on Friday, November 30, 2018, that it's Starwood reservation system experienced a massive data breach. This data breach may have exposed private information of close to 500 million guests. The sheer number of people who may be affected makes the Starwood data breach one of the largest data breaches in history.

The hotel chain was notified of an unauthorized attempt to access the Starwood system in September. Marriott took action by getting security professionals on the case. According to USA Today, it was later recognized that "there had been unauthorized access to the Starwood network since 2014."

Marriott Starwood properties that may have been affected by the breach include the Sheraton Hotels, Westin Hotels, St.Regis Hotels, W Hotels, Element Hotels, Aloft Hotels, and more.

The type of information that may have been exposed due to the breach includes guest names, email addresses, date of birth, phone numbers, credit card numbers, credit card expiration dates, passport information, arrival/departure information, etc.

According to an official Marriott news release, "the payment card numbers were encrypted using Advanced Encryption Standard encryption." The hotel brand went on to explain that "there are two components needed to decrypt the payment card numbers, and at this point, Marriott has not been able to rule out the possibility that both were taken."

Marriott reported the massive data breach to law officials and is currently working on resolutions. The hotel chain is in the process of emailing guests that have been affected by the breach.

The Marriott news release also stated that "Marriott is providing guests the opportunity to enroll in WebWatcher free of charge for one year. WebWatcher monitors internet sites where personal information is shared and generates an alert to the consumer if evidence of the consumer’s personal information is found. Due to regulatory and other reasons, WebWatcher or similar products are not available in all countries. Guests from the United States who activate WebWatcher will also be provided fraud consultation services and reimbursement coverage for free. To activate WebWatcher, go to and click on your country, if listed, for enrollment."

There is currently little to no information provided regarding the motive behind the Starwood data breach. One of the most popular motives behind data breaches is identity theft. Those who are concerned about future identity theft threats may want to consider professional identity theft protection.

The Top Identity Theft Companies

company logo
#1 Norton LifeLock chevron_right
9.9 Overall Score
company logo
#2 IdentityIQ chevron_right
8.5 Overall Score
company logo
#3 Complete ID chevron_right
8.3 Overall Score

Related Articles

Holiday Scams to Avoid This Year

December 13, 2019

The holiday season is a time for joy, family, and gifts. And it’s a season that you may look forward to all year....

Read More
What You Need to Know About Tax Identity Theft This Tax Se...

March 28, 2019

Identity theft may not be your main concern this tax season, but it definitely should be on your radar. Tax identity th...

Read More
The Heartbreak of Spousal Identity Theft

February 14, 2018

It's Valentine's Day and you and your spouse are enjoying a candlelit dinner at your favorite restaurant. Everything fe...

Read More