"According to HIBP, the haul totals 8.7 million records and appears to relate to the Mariner Society loyalty program run by Holland America Line, a subsidiary of Carnival Corporation. The exposed data includes names, dates of birth, genders, and membership status details - the kind of personal data attackers can easily repurpose for fraud or phishing."
"The company acknowledged a security incident, according to HIBP, but its version of events is, for now, a lot more contained. Carnival says the breach involved a phishing attack against a single user account and said it is still working to understand the scope of any unauthorized access."
"The data was published by the ever-busy ShinyHunters extortion crew, which claimed to have lifted not just customer data but 'terabytes of internal corporate data' after talks with the company apparently went nowhere."
Carnival Corporation is experiencing a data breach involving 7.5 million unique email addresses associated with its Mariner Society loyalty program. The exposed data includes personal information such as names, dates of birth, and membership status, which can be exploited for fraud. While Carnival acknowledges a phishing attack on a single user account, the ShinyHunters extortion group claims to have accessed terabytes of internal corporate data. The company has not confirmed the extent of the breach or whether a ransom demand was made.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]