130

Marriott admits it falsely claimed for five years it was using encryption during 2018 breach (www.csoonline.com)

submitted 6 months ago by BrikoX@lemmy.zip to c/databreaches@lemmy.zip

4 comments fedilink hide all child comments

Marriot revealed in a court case around a massive 2018 data breach that it had been using secure hash algorithm 1 and not the much more secure AES-1 encryption as it had earlier maintained.

top 4 comments

sorted by: hot top controversial new old

[-] ceasarlegsvin@kbin.social 19 points 6 months ago

Aes1 and sha1 do very different things...

[-] cm0002@lemmy.world 19 points 6 months ago

Many years ago, back when Marriot locked their non-shit WiFi behind a paywall I was able to get around it by changing some values (Iirc, I literally changed the price that was sent to the server to 0.00) with TamperMonkey lol no server side validation, no lookups, no checksums no verification of any kind lmao

So this doesn't surprise me in the least

[-] verity_kindle@lemmy.world 2 points 6 months ago

Ooh, the lawyers are gonna drag Marriot to the hot box.

[-] applepie@kbin.social 2 points 6 months ago

Good thing at least they did not waste any money on some dude's salary who coulda do like a job, that would be really socialist imho thank god we are safe with the leadership like this.

this post was submitted on 05 May 2024

130 points (100.0% liked)

Data Breaches

1029 readers

1 users here now

Information about data breaches, data leaks, ransomware attacks, and other related stories.

Companion communities

!cybersecurity@sh.itjust.works - centered on the cybersecurity and information security profession.

Icon attribution

founded 1 year ago

MODERATORS

BrikoX@lemmy.zip