Carnival Corporation has been hit by a ransomware attack on one of its brand’s IT systems.
The cruise giant, which operates Carnival Cruise Lines, Princess Cruises, Cunard, Holland America Line and P&O just to name a few, said in a regulatory filing the attack may have accessed the personal data of passengers and employees.
“Although we believe that no other information technology systems of the other company’s brands have been impacted by this incident based upon our investigation to date, there can be no assurance that other information technology systems of the other company’s brands will not be adversely affected,” the filing said.
It is not yet clear which of Carnival’s cruise lines suffered the attack.
The company said it it does not believe the incident will have an impact on its business, operations or financial results.
“Nonetheless, we expect that the security event included unauthorized access to personal data of guests and employees, which may result in potential claims from guests, employees, shareholders, or regulatory agencies,” Carnival said.
Travel Weekly has contacted Carnival for comment.
The attack follows data breaches from two other travel companies: CWT and Marriott.
Earlier this month, CWT was forced to pay $6.3 million to cyber attackers who allegedly stole sensitive files and knocked 30,000 computers offline.
In April, Marriott notified millions of guests who were caught up in a data breach involving an app for its hotels.