According to SC Media UK, in March, 2018, online travel company Orbitz revealed that it had suffered a major data breach, potentially exposing the personal information of up to 880,000 customers. Orbitz is owned by parent company Expedia. Though it is unclear from the statement issued by Orbitz, it appears that customers who made purchases during certain time frames may have had their data compromised by a breach, which was discovered on March 1, 2018. Orbitz said the intrusion most likely occurred between October 1, 2017 and December 22, 2017, and is said to affect data from purchases made from January 1, 2016 to June 22, 2016 on Orbitz, and those made between January 1, 2016 and December 22, 2017 on sites that partner with Orbitz.
The compromised data may include the full name, payment card information, date of birth, phone number, email address, physical or billing address, and gender of the Orbitz customers. The company said that, despite the breach, it has not yet found not direct evidence that this personal information was actually taken from the platform. Experts expect that the data was accessed through an older booking platform.
Tags: credentials, data breach