carnival breach 6 million affected: Largest Cruise Data Incident in History Exposes 6 Million Passengers
ATLANTA, GEORGIA — A massive data breach involving Carnival Corporation, the world's largest cruise operator, has compromised the personal information of more than 6 million passengers, marking what cybersecurity experts are calling the largest data incident in the cruise industry's history. The breach, confirmed by Carnival on Wednesday, occurred between March and July of this year, when an unauthorized third party gained access to certain file systems within the company's information technology network. Affected data includes passenger names, addresses, phone numbers, passport numbers, and, in some cases, health-related information such as COVID-19 test results. Carnival stated that financial payment information was not compromised, as it is stored on a separate, encrypted system. The company has since notified law enforcement, hired a leading cybersecurity firm, and is offering complimentary credit monitoring and identity protection services to all affected individuals. Investigators are currently working to determine the full scope of the breach and whether any stolen data has been misused. Carnival Corporation operates nine cruise line brands, including Carnival Cruise Line, Princess Cruises, and Holland America Line, collectively carrying over 13 million passengers annually. This incident raises significant concerns regarding data security protocols within the travel and hospitality sector.