Profile picture
Jeremiah Grossman @jeremiahg
, 6 tweets, 2 min read Read on Twitter
1. Breach disclosed on a Friday.
2. The data about 500m people DOES NOT belong to their guests, but to Marriott. They have every right to allow it be compromised.
3. Breach unlikely to be costly, and affect stock price.
4. Other hotel chains should consider incident response.
It’s hard to tell if the Marriott breach contained cardholder information, but if so, PCI-DSS needs to take there fair share of the heat... and the QSA for that matter.
An intruder was silently running around Marriott’s system for 4 years. 4 YEARS. Imagine the amount of work necessary to get security back to a known good state and confident that you did so. Might take another 4 years in any system that large.
I’d bet that Marriott has a cyber-insurance policy that’ll cover a lot of their costs. If anyone happens to have any details, please share.
When a breach goes undetected for so long, especially on a large corp with a massive network, it’s highly unlikely there was just one intruder.
And where was @briankrebs all these years!? I mean cmon, he’s supposed to be our best IDS after all right!
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Jeremiah Grossman
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member and get exclusive features!

Premium member ($30.00/year)

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!