- 953
- 252
Carnival Corporation, the world's largest cruise ship operator, notified customers of a data breach affecting 5,995,277 people. The incident occurred back in April, but the company only disclosed details now, after completing an investigation.
Carnival officials reported that attackers gained access to some of its internal IT systems by tricking a company employee through social engineering. Experts detected suspicious activity on April 14, and a few days later, they discovered that the attackers had already stolen customers' personal data.
Although the company did not disclose the identity of the attacker, the ransomware group ShinyHunters claimed responsibility for the incident back in April. At the time, hackers claimed to have stolen terabytes of Carnival's internal data and more than 8.7 million records containing personal information. According to Carnival officials, the exact amount of stolen information varies from customer to customer. The leak may have included names, home addresses, email addresses, phone numbers, dates of birth, and identification document numbers. Previously, specialists from the service Have I Been Pwned reviewed the data published by ShinyHunters and reported that the leak also affected data from the Mariner Society loyalty program, including membership status and other personal information. Bleeping Computer reports that, judging by the hackers' own publications, negotiations between the parties have reached an impasse. On their website, ShinyHunters representatives claimed that Carnival refused to comply with the group's demands and pay the ransom. Affected customers are now being offered two years of free credit monitoring through TransUnion (standard practice for such incidents in the US). Carnival also states that it has strengthened security measures and monitored suspicious activity, and has engaged external information security experts to investigate the incident. It should be noted that this is not the first such incident for Carnival. The company has previously reported data breaches. For example, in 2020, attackers gained access to customer and employee data after compromising corporate accounts and internal systems. @ xakep.ru
Carnival officials reported that attackers gained access to some of its internal IT systems by tricking a company employee through social engineering. Experts detected suspicious activity on April 14, and a few days later, they discovered that the attackers had already stolen customers' personal data.
Although the company did not disclose the identity of the attacker, the ransomware group ShinyHunters claimed responsibility for the incident back in April. At the time, hackers claimed to have stolen terabytes of Carnival's internal data and more than 8.7 million records containing personal information. According to Carnival officials, the exact amount of stolen information varies from customer to customer. The leak may have included names, home addresses, email addresses, phone numbers, dates of birth, and identification document numbers. Previously, specialists from the service Have I Been Pwned reviewed the data published by ShinyHunters and reported that the leak also affected data from the Mariner Society loyalty program, including membership status and other personal information. Bleeping Computer reports that, judging by the hackers' own publications, negotiations between the parties have reached an impasse. On their website, ShinyHunters representatives claimed that Carnival refused to comply with the group's demands and pay the ransom. Affected customers are now being offered two years of free credit monitoring through TransUnion (standard practice for such incidents in the US). Carnival also states that it has strengthened security measures and monitored suspicious activity, and has engaged external information security experts to investigate the incident. It should be noted that this is not the first such incident for Carnival. The company has previously reported data breaches. For example, in 2020, attackers gained access to customer and employee data after compromising corporate accounts and internal systems. @ xakep.ru