Incidents attributed to:

Chinese MSS-linked APT (APT10 cluster, per public attribution)

Related incidents

EspionageResolvedNovember 30, 2018

Marriott / Starwood guest data breach

Chinese state-attributed operators sat undetected on Starwood's guest reservation database from 2014, surviving Marriott's 2016 acquisition. Disclosed 2018: 500 million guest records exposed, including 5.25 million unencrypted passport numbers.

Victim: Marriott International / Starwood Hotels & Resorts
Loss: $200.0M
Records: 500.0M