Carnival Corp. ransomware attack affected three cruise lines

Social Security numbers, health data and other personal information may have been stolen in the attack

Dev Kundaliya
16 October 2020

Tweet
Facebook
LinkedIn
Send to

Cruise firm Carnival has revealed that hackers were able to access guests' and employees' personal information from three different cruise lines, in a ransomware attack on the 15^th August. The company's casino operations of were also disrupted due to the incident, the company said.

Carnival owns all three of the hacked companies: Holland America Line, Carnival Cruise Line and Seabourn.

The British-American cruise operator anticipates that Social Security numbers, health data and other personal information may have been compromised, although there is a "low likelihood" of the data being misused.

Carnival is working with external cyber security experts to recover its data. The firm's IT teams are also working to identify all guests, crew, employees and other individuals whose personal information may have been compromised in the incident. The firm expects to complete the process in the next 30 to 60 days, after which all potentially affected individuals will be notified.

The company says it will offer complimentary credit monitoring to affected individuals, as appropriate.

Meanwhile, a dedicated call centre has been set up to answer individual queries about the incident.

On the 17^th August, Carnival announced that it had identified a ransomware attack targetting some of its computer systems two days earlier.

The firm said its IT security teams took immediate steps to shut down the intrusion, prevent unauthorised access and restore operations. It also notified law enforcement and the appropriate regulators, and called a cybersecurity firm to investigate the matter.

"Based on its preliminary assessment and on the information currently known (in particular, that the incident occurred in a portion of a brand's information technology systems), the Company does not believe the incident will have a material impact on its business, operations or financial results," Carnival said in August.

The firm says it is taking "all appropriate steps" to improve the security of its IT systems and to prevent a repetition of such incidents in future.

Tweet
Facebook
LinkedIn
Send to

Hackney Borough Council in London suffers serious cyber attack

Hackney Borough Council suffers serious cyber attack

The Council is currently working with security experts to protect data

Hacking
13 October 2020

XDSpy hacker group is stealing sensitive data from government entities since 2011

Previously unknown XDSpy hacker group has been stealing sensitive government data since 2011

It uses quite basic tools, but they are efficient enough to compromise the targets

Hacking
05 October 2020

Hackers behind Blackbaud ransomware attack had access to unencrypted banking data and login credentials

Blackbaud ransomware hackers could access unencrypted banking data and login credentials

Blackboard had originally claimed such data was protected

Hacking
01 October 2020

Russian-speaking OldGremlin ransomware group targets Russian organisations

The group uses social engineering techniques to infect networks - but is only targetting Russian organisations, for now

Hacking
24 September 2020

US Justice Department indicts Iranian, Chinese, and Malaysian hackers for their role in targeting American and foreign firms

US Justice Department indicts Iranian, Chinese and Malaysian hackers for targeting hundreds of individuals and organisations

Malaysian nationals allegedly helped Chinese hackers in their attempts to intrude into the networks of American firms

Hacking
17 September 2020

IT Leaders Forum - Puppet

IT Leaders Festival 2020

AI & Machine Learning Awards 2020

Digital Technology Leader Awards

Endpoint Management and Security Hub