Marriott International announced on Friday that a database for the reservation of guests of its Starwood Hotel brand had been breached, possibly disclosing information on approximately 500 million guests.
Marriott's shares fell more than 5 percent after being disclosed in the premarket. 19659003] The company said its investigation revealed that an unauthorized party has copied and encrypted information, and since 2014, has had unauthorized access to the Starwood network.
The company said it has taken action to improve the situation. Marriott was not immediately available for further comments.
For approximately 327 million of these guests, the information includes a combination of name, mailing address, phone number, email address, passport number, Starwood Preferred Guest account information, date of birth, gender among other personal information, Marriott said.
For some, the information also includes payment card numbers and expiration dates, but these numbers have been encrypted, the hotel chain said.
There are two components required to decrypt the payment card numbers, and at that time Marriott said it had not been possible to rule out the possibility that both were stolen.
The company said it had reported this incident to law enforcement, and continues to support its investigation and has already notified the regulators
Marriott bought Starwood in 201
– CNBC contributed to this report at.