"
data-check-event-based-preview=""
data-is-vertical-video-embed="false"
data-network-id=""
data-publish-date="2022-03-22T21:58:40Z"
data-video-section="business"
data-canonical-url="https://www.cnn.com/videos/business/2022/03/22/cybersecurity-ceo-cyberattacks-russia-ukraine-invasion-qmb-vpx.cnnbusiness"
data-branding-key=""
data-video-slug="cybersecurity ceo cyberattacks russia ukraine invasion qmb vpx"
data-first-publish-slug="cybersecurity ceo cyberattacks russia ukraine invasion qmb vpx"
data-video-tags="business and industry sectors,business, economy and trade,computer science and information technology,continents and regions,crime, law enforcement and corrections,criminal offenses,cyber attacks,digital crime,digital security,eastern europe,embargoes and sanctions,europe,international relations,international relations and national security,malware,russia,russia-ukraine conflict,software and applications,technology,ukraine,unrest, conflicts and war"
data-details="">
Video Ad Feedback
Cybersecurity CEO: 'More targeted ransomware attacks' by Russia coming
"
data-check-event-based-preview=""
data-is-vertical-video-embed="false"
data-network-id=""
data-publish-date="2021-12-14T20:51:21Z"
data-video-section="business"
data-canonical-url="https://www.cnn.com/videos/tech/2021/12/14/us-cyber-warning-software-vulnerability-marquardt-nr-vpx.cnn"
data-branding-key=""
data-video-slug="us cyber warning software vulnerability marquardt nr vpx"
data-first-publish-slug="us cyber warning software vulnerability marquardt nr vpx"
data-video-tags="business and industry sectors,business, economy and trade,computer science and information technology,crime, law enforcement and corrections,criminal offenses,cyberterrorism,digital crime,digital security,international relations and national security,national security,software and applications,technology,terrorism,terrorism and counter-terrorism,unrest, conflicts and war"
data-details="">
Video Ad Feedback
How your device could be at risk of 'one of the most serious' cyber security threats
"
data-check-event-based-preview=""
data-is-vertical-video-embed="false"
data-network-id=""
data-publish-date="2021-08-03T17:51:30Z"
data-video-section="business"
data-canonical-url="https://www.cnn.com/videos/business/2021/08/03/solarwinds-ceo-cybersecurity-hacks.cnnbusinesss"
data-branding-key="the-chat-with-julia-chatterley"
data-video-slug="solarwinds ceo cybersecurity hacks"
data-first-publish-slug="solarwinds ceo cybersecurity hacks"
data-video-tags="celebrities,companies,crime, law enforcement and corrections,criminal offenses,cyberterrorism,digital crime,digital security,international relations and national security,julia chatterley,national security,solarwinds,technology,terrorism,terrorism and counter-terrorism,unrest, conflicts and war"
data-details="">
Video Ad Feedback
SolarWinds CEO: Cyber threats need community vigilance
"
data-check-event-based-preview=""
data-is-vertical-video-embed="false"
data-network-id=""
data-publish-date="2021-06-10T14:21:09Z"
data-video-section="business"
data-canonical-url="https://www.cnn.com/videos/business/2021/06/10/fireeye-ceo-cybersecurity-ransomware.cnnbusiness"
data-branding-key="the-chat-with-julia-chatterley"
data-video-slug="fireeye ceo cybersecurity ransomware"
data-first-publish-slug="fireeye ceo cybersecurity ransomware"
data-video-tags="business executives,business, economy and trade,companies,compensation and benefits,crime, law enforcement and corrections,criminal offenses,currencies,digital crime,digital currencies,economy and economic indicators,executive pay,fireeye,labor and employment,money, banknotes and coins,technology,workers and professionals"
data-details="">
"
data-check-event-based-preview=""
data-is-vertical-video-embed="false"
data-network-id=""
data-publish-date="2021-06-03T22:01:48Z"
data-video-section="business"
data-canonical-url="https://www.cnn.com/videos/business/2021/06/03/companies-ransomware-white-house-marquardt-dnt-vpx.cnn"
data-branding-key=""
data-video-slug="companies ransomware white house marquardt dnt vpx"
data-first-publish-slug="companies ransomware white house marquardt dnt vpx"
data-video-tags="business and industry sectors,business, economy and trade,computer science and information technology,continents and regions,crime, law enforcement and corrections,criminal offenses,digital crime,digital security,eastern europe,europe,food and beverage industry,food production industry,government and public administration,government bodies and offices,malware,politics,russia,software and applications,technology,us federal government,white house"
data-details="">
Video Ad Feedback
White House urges companies to take cyberattack threat more seriously
"
data-check-event-based-preview=""
data-is-vertical-video-embed="false"
data-network-id=""
data-publish-date="2021-05-11T15:04:18Z"
data-video-section="business"
data-canonical-url="https://www.cnn.com/videos/business/2021/05/11/ibm-ceo-cybersecurity.cnnbusiness"
data-branding-key="the-chat-with-julia-chatterley"
data-video-slug="ibm ceo cybersecurity"
data-first-publish-slug="ibm ceo cybersecurity"
data-video-tags="companies,government organizations - us,ibm,nasa,space and astronomy,us federal departments and agencies,us government independent agencies"
data-details="">
Video Ad Feedback
IBM CEO: Cybersecurity needs to be a collective effort led by government
"
data-check-event-based-preview=""
data-is-vertical-video-embed="false"
data-network-id=""
data-publish-date="2020-03-13T12:12:56Z"
data-video-section="business"
data-canonical-url="https://www.cnn.com/videos/business/2020/03/12/sim-swap-hacker-stole-one-million-sg-orig.cnn"
data-branding-key="unhackable"
data-video-slug="sim swap hacker stole one million sg orig"
data-first-publish-slug="sim swap hacker stole one million sg orig"
data-video-tags="business and industry sectors,business, economy and trade,consumer electronics,consumer products,crime, law enforcement and corrections,criminal offenses,digital crime,digital security,electronics,mobile and cellular telephones,mobile technology,technology,telecommunications industry,wireless carriers,wireless industry"
data-details="">
Video Ad Feedback
A hacker stole $1 million from him by tricking his cell phone provider
"
data-check-event-based-preview=""
data-is-vertical-video-embed="false"
data-network-id=""
data-publish-date="2019-07-23T12:00:39Z"
data-video-section="business"
data-canonical-url="https://www.cnn.com/videos/business/2018/09/25/biggest-data-breaches-equifax-orig.cnn-business"
data-branding-key="unhackable"
data-video-slug="biggest data breaches equifax orig"
data-first-publish-slug="biggest data breaches equifax orig"
data-video-tags="banking, finance and investments,big data,business and industry sectors,business, economy and trade,companies,computer science and information technology,consumer credit reporting,consumer loans and credit,credit cards,crime, law enforcement and corrections,criminal offenses,digital crime,digital security,equifax incorporated,information management,linkedin corporation,oath (company),personal finance,target corp,technology,yahoo inc"
data-details="">
Video Ad Feedback
5 of the biggest data breaches?
01:43
Now playing
- Source:
CNN Business
New YorkCNN Business
—
If you’ve stayed at a Starwood hotel in recent years, there’s a good chance you’ve been impacted by a massive data breach that potentially exposed the personal data of about 500 million guests.
Marriott — which owns Starwood hotels such as the St. Regis and the Westin — on Friday disclosed that the Starwood guest reservation system had been hacked, in a breach dating back to 2014.
For 327 million people, Marriott says, the exposed information includes names, phone numbers, email addresses, passport numbers and dates of birth. For millions of others, credit card numbers and card expiration dates were potentially compromised. This kind of information could be used to steal your identity and open bank accounts, credit cards or loans in your name.
It’s the second biggest corporate data breach in history, behind one involving Yahoo, which said last year that 3 billion accounts among several of its brands were compromised.
Marriott said it will start emailingusers who were impacted and it has set up a website with information about the breach.
In the meantime, here’s what you can do to protect yourself:
Change your password
Marriott says guests should change their passwords regularly and pick ones that aren’t easily guessed. For example, instead of a common phrase, choose a combination of four or more unrelated words with numbers, characters and a mix of upper and lower-case letters.
You should also have different passwords for all the services you use.
“Changing your password will just add one more roadblock to a potential hacker getting into your system,” said Aaron Brantly, a cybersecurity expert at Virginia Tech.
Many websites, including social media and financial accounts, offer two-factor authentication for an added layer of security. Even if someone obtains your password, you can’t access your accounts without a second piece of information, like a code texted to your phone.
Monitor your accounts for suspicious activity
Marriott recommends customers keep an eye on their Starwood Preferred Guest account for any suspicious activity. Guests should also check their bank, retirement, and brokerage accounts, as well as credit card statements to look for any unauthorized transactions.
Some experts recommend signing up for credit monitoring services or identity theft protection. A more extreme step is putting a freeze on your credit, which blocks anyone from accessing your credit reports without permission.
“Unfortunately, the reality is [these consumers] have to monitor continuously, for generally the rest of their lives,” said Brantly. “These types of accounts are sold regularly on the dark web. … You can usually buy credit card information for a couple dollars per credit card online.”
Vivek Lakshman, VP of innovation at cybersecurity firm ThumbSignIn, says consumers can also enroll in services like WebWatcher – which Marriott is providing for free for a year – to track their exposure. These sites monitor websites where personal information is shared and alerts consumers if there’s evidence of their information exposed online.
Open a separate credit card for online transactions
Yair Levy, a cybersecurity and information systems expert at Nova Southeastern University, recommends having a credit card dedicated to online shopping. This makes it easier to track transactions and spot fraudulent activity.
If that credit card is compromised, you also won’t have to update automatic payments for things like bills.
Limit the information you share
Experts say not to provide information unless it’s absolutely required to buy a product or service.
“Consumers should limit what they provide companies based on their need to know. Often, companies gather data that they may not need, but take if volunteered,” said Marty Puranik, the CEO of Atlantic.Net, a cloud computing and hosting services provider.
For example, a travel company may ask for passport information, but it may not be required. If it is, you can ask what other forms of identification you can provide instead.
“If you give lower level information, or information that can be changed – for example, a second credit card to verify your identity – it is easier to change and protect that than a social security number or passport ID,” he said.
But this isn’t always possible. If you are traveling internationally, a company like Marriott may require a passport number.
Avoid saving credit card information on websites
Experts recommend minimizing the number of places where you store credit card information. However, this doesn’t mean your data will be safe or protected – it just helps cut down on the risk.
Another option is to use services such as PayPal, Google Pay, or Apple Pay, which let you pay for goods and services without divulging your credit card to the company you’re buying from.
Be vigilant
Consumers should work under the assumption cyber criminals already have access to their information as breaches become increasingly common.
“Having a very healthy dose of skepticism moving forward is probably the best way to safeguard yourself in an era where all your information has been divulged, unfortunately,” said Brantly.
Experts caution internet users to be wary of “phishing” attempts by bad actors looking to steal your data, including through bogus emails, fake links and fraudulent websites. On its informational website about the hack, Marriott reminded members the company will not ask you to provide your password by phone or email.
“Know you are consistently being exposed [and] consistently under threat – not necessarily through any fault of your own but accidental disclosures by companies or carelessness by companies. It requires us in the modern era to be vigilant consistently,” said Brantly.
![This photo taken on August 4, 2020 shows Prince, a member of the hacking group Red Hacker Alliance who refused to give his real name, using his computer at their office in Dongguan, China's southern Guangdong province. - From a small, dingy office tucked away in an industrial city in southern China, one of China's last "volunteer hacker" groups maintains a final outpost in its patriotic hacking war. (Photo by NICOLAS ASFOURI / AFP) / TO GO WITH China-hacking-security,FOCUS by Laurie Chen / The erroneous mention[s] appearing in the metadata of this photo by NICOLAS ASFOURI has been modified in AFP systems in the following, we removed the HOLD HOLD HOLD in the main caption. Please immediately remove the erroneous mention[s] from all your online services and delete it (them) from your servers. If you have been authorized by AFP to distribute it (them) to third parties, please ensure that the same actions are carried out by them. Failure to promptly comply with these instructions will entail liability on your part for any continued or post notification usage. Therefore we thank you very much for all your attention and prompt action. We are sorry for the inconvenience this notification may cause and remain at your disposal for any further information you may require. (Photo by NICOLAS ASFOURI/AFP via Getty Images)](https://media.cnn.com/api/v1/images/stellar/prod/210621154549-hackers-keyboard.jpg?q=x_0,y_131,h_1419,w_2523,c_crop/w_250)
