// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
ColdRecon / Breach Radar / Marriott
Breach Record

Marriott

DISCLOSED 2026-01-20 · UNKNOWN · 383,000,000 RECORDS EXPOSED

Marriott International suffered a massive data breach exposing 383 million guest records. The breach originated from a compromise of Starwood's systems prior to Marriott's acquisition, remaining undetected for four years. The incident highlights risks associated with mergers and acquisitions security.

The record

What we know

Disclosed
2026-01-20
Sector
Hospitality
Country
US
Records exposed
383,000,000
Domain
marriott.com
Data classes exposed
guest records
ColdRecon assessment

Could a positive-security control have prevented this?

Verdict · unclear · opinion

The text does not provide enough technical details about the attack method to determine if a positive-security model would have prevented it.

Our assessments are opinion, grounded in the cited public facts. Read them critically.

Sources

Cited reporting

This page is the permanent ColdRecon entry for the Marriott disclosure. It updates if new public reporting emerges. All tracked breaches →

Marriott just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →