Re: [103attendees] Marriott Hacking Exposes Data of Up to 500 Million Guests

"Andrew G. Malis" <agmalis@gmail.com> Fri, 30 November 2018 18:12 UTC

Return-Path: <agmalis@gmail.com>
X-Original-To: 103attendees@ietfa.amsl.com
Delivered-To: 103attendees@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 08D24130EEC for <103attendees@ietfa.amsl.com>; Fri, 30 Nov 2018 10:12:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lzmUeO662Tti for <103attendees@ietfa.amsl.com>; Fri, 30 Nov 2018 10:12:41 -0800 (PST)
Received: from mail-qt1-x844.google.com (mail-qt1-x844.google.com [IPv6:2607:f8b0:4864:20::844]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6C44E130DCE for <103attendees@ietf.org>; Fri, 30 Nov 2018 10:12:41 -0800 (PST)
Received: by mail-qt1-x844.google.com with SMTP id n21so6904542qtl.6 for <103attendees@ietf.org>; Fri, 30 Nov 2018 10:12:41 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=5D7QDLMCFEOnVetlDAaisXjsjJzolU89SNSJ8E26Y0A=; b=Am8uAI1/3lPFLaKXXD93j/m+AmiTmG7xXh+VeYNs1SFEOx7zY/a4H3KoDqJMNx6b19 Fdi3RkWG0ORRwHqJW1yydSoP+qyRsyw9iASBt2ZGIf+rT19HdirSR2htuWia0JClyzJn a77fqjcFF/iw0uefWqt56IdfREHGMpzNm6pieQoGQNcjBqaBesIinfQwr47GrO7QMnCD b8E/xKu7WTJX2ZUxe6qSqq7W+oU/rjggXKvhHG1jpJ4O5P7FjNQQR2ahXyxqFw42f0Ou T2yFsVS8CDIE+rn5K19JFaOAi2kY78gKG3xpDBp8ggp9TWzZSf28qRrSZSH6QRtHas63 vtSw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=5D7QDLMCFEOnVetlDAaisXjsjJzolU89SNSJ8E26Y0A=; b=c7DEjG5uCE5lUMGQEeZtExt0mx8xc+OgNjztdTONynuGbmIBxyzlw6TtuWV32sbbMi B9290zlP6OyJK6Q2zqQzPm4mI8lzaIewSD5yYy3RSFLZJ80GD8aVVZt5cJMu5+7ZnXY6 fWuR/N4OWdMQxGhY+F7xbEe1KUAHJq/dE6OvTF2HDofdhkTI1bv5Uyt97crEZ1nO7lPt 9THCl6ygI4obEgp4fB1ABXkhBtgP2PRj+9c6ZQj69MOLT46Ub8QKC0CatskiaWuXueS1 jsZOzEIZjq6RWXPVzI54999LsqbiuvaTFLuU1n9mkPMBQWBlJOgMCFE+L12Xnu1fBI+A 5ULg==
X-Gm-Message-State: AA+aEWbre77MDH+/wTWADpPq0OETsl+VzOxPhtRv71c+IFVSD/2phyuN RQ1nNiVaOz5Mq9TGyoxpnRocsfdNzKz1na+nQ0SJAC5S
X-Google-Smtp-Source: AFSGD/XErCr53AqufnNCTFDIBEdWkf9HIG1zbOPEUjK0jIKlsVsJ2V7HaKNEdUdnFckOGrdr+FstgreiUB6PqfLeycE=
X-Received: by 2002:a0c:f143:: with SMTP id y3mr6650252qvl.21.1543601560399; Fri, 30 Nov 2018 10:12:40 -0800 (PST)
MIME-Version: 1.0
References: <5C3320C7-D0EA-4B46-9681-6AC4F134B2AF@orandom.net> <CAA=duU0GY_K_9-pTVFKYuijkGiSiAu6ocXzjG+TyBd0PnYgUBA@mail.gmail.com> <A8E75388-C31D-4C20-A8F6-02FC89F6D7DC@arista.com>
In-Reply-To: <A8E75388-C31D-4C20-A8F6-02FC89F6D7DC@arista.com>
From: "Andrew G. Malis" <agmalis@gmail.com>
Date: Fri, 30 Nov 2018 13:12:29 -0500
Message-ID: <CAA=duU1NHu8X0Oi7NRhNGfANYzm11vTJ53+nUAzubL+ssrjV3w@mail.gmail.com>
To: tony.li@arista.com
Cc: daveoran@orandom.net, 103attendees@ietf.org
Content-Type: multipart/alternative; boundary="000000000000aeb38b057be5be09"
Archived-At: <https://mailarchive.ietf.org/arch/msg/103attendees/mBey1bJ6wpL-hCiJplqLKRy9fzU>
Subject: Re: [103attendees] Marriott Hacking Exposes Data of Up to 500 Million Guests
X-BeenThere: 103attendees@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Mailing list of IETF 103 attendees that have opted in on this list <103attendees.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/103attendees>, <mailto:103attendees-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/103attendees/>
List-Post: <mailto:103attendees@ietf.org>
List-Help: <mailto:103attendees-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/103attendees>, <mailto:103attendees-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Nov 2018 18:12:44 -0000

I was able to make it work by following the instructions in the NYT article:

To enroll, customers should first click their country of residence at the
bottom of Marriott’s information page. On the next page, on the right side
halfway down, click “I believe I am affected by the Starwood Reservation
Database security incident.” Then, click “Enroll Now.” Upon clicking
“Enroll Now,” users see a page with branding for Kroll, the security firm.
Kroll owns Web Watcher, but no mention of Web Watcher appears until after
you enroll on the Kroll-branded page.

Cheers,
Andy


On Fri, Nov 30, 2018 at 11:45 AM Tony Li <tony.li@arista.com>; wrote:

>
>
> On Nov 30, 2018, at 8:27 AM, Andrew G. Malis <agmalis@gmail.com>; wrote:
>
> That said, anyone that has stayed in a Starwood hotel (W, Sheraton,
> Westin, etc.) prior to Sept. 10 should check out https://answers.kroll.com
>  .
>
>
>
> The WebWatcher enrollment link isn’t actually working.
>
> It’s a kind offer, but…
>
> Tony
>
>