Yet another breach of the Marriot Hotel chain


As we see so often, humans are the target for attackers. It doesn’t matter how well-trained staff are, attacks are getting ever more sophisticated. People are so busy and systems so complex, it’s too easy to make a simple mistake and click on a bad link or install infected software. Training remains important, but back it up with systems that prevent installation of malware (step one is to remove local admin rights from user’s systems) and ensure that no user has direct access to sensitive data or critical IT systems with administrator privileges.

Security is an ongoing process and not a tick box exercise – the fact that this isn’t the first time Marriot has suffered a breach, demonstrates the need to keep security processes up to date and employees educated on the need to implement and follow them.