The Marriott cyber breach is the second largest data breach in history – after 3 billion Yahoo accounts were hacked in 2014-. Unfortunately, this latest breach was far more serious with the theft of not only names, addresses and card details, but passport numbers and the dates people checked in and out.
The breach has exposed a grave and global systematic flaw in mergers & acquisitions. There have been cases where companies have engaged in merger activity without being aware of any potential issue regarding data security of the organisation that they are purchasing. ROI calculations will unquestionably take place, but the exposure to risk is less likely to be considered, which would mean that the conclusions to invest are seriously flawed, incomplete & inaccurate and puts the entire portfolio at risk.
Marriott acquired Starwood in 2016, but Marriott management should have been aware that the Starwood systems were vulnerable. After all, Starwood has been hacked in 2014 when they fell prey to credit card breaches.
So, the question remains – was this a case of an enormous failure to perform proper due diligence prior to acquiring Starwood in September of 2016 for $13 billion, in turn creating the largest hotel chain in the world.
Software such as RiskView can assist with mergers and acquisitions to detect exposures to risk in various capacities, allowing an organisation to thoroughly audit a business in areas that they didn’t know could contain documents that could pose a risk to the business
Recent Posts
- 22nd November 2019Why Aren’t HR Managers Prioritising Employee Data Security?
- 14th November 2019Thousands Of Drivers’ Social Security Numbers Exposed In Data Breach
- 11th November 2019Multinational Cyber Security And Defence Company Suffers Insider Data Breach
- 14th October 2019Data: Defining or Divisive
- 12th September 20192019 on track to be the “worst year on record” for data breach activity
- 10th September 2019Leaving the EU: Brexit and GDPR
- 9th September 2019Data Breaches: Did you know?
- 5th September 2019What should you do if your data has been breached?
- 3rd September 2019GDPR was just the beginning
- 14th August 2019The dangers of Subject Access Requests