Hackers have targeted the world’s largest cruise lining company with ransomware, encrypting data from the firm that organises cruises under nine major brands including P&O and Princess Cruises.
Carnival Corporation & PLC has confirmed that hackers accessed a portion of one of its brand’s IT systems and downloaded some data files, according to a filing with the US Securities and Exchange Commission (SEC).
The cruise operator detected the attack on 15 August and took measures to secure its systems. The firm said it expects the security incident included unauthorised access to the personal data of both guests and employees, which may prompt action from guests, employees, shareholders, and regulators.
“Promptly upon its detection of the security event, the Company launched an investigation and notified law enforcement, and engaged legal counsel and other incident response professionals,” the filing said.
“While the investigation of the incident is ongoing, the Company has implemented a series of containment and remediation measures to address this situation and reinforce the security of its information technology systems.”
Despite targeting the company’s IT systems, Carnival Corporation doesn’t feel the incident will have a material impact on its business, operations or financial results. The news was revealed in an 8-K form, which is submitted when a company experiences an unscheduled event that could be key to shareholders, or the SEC.
This is the second major security incident that Carnival Corporation has disclosed this year, after two units disclosed in March that it was targeted by cyber criminals during May 2019. Holland America Line and Princess Cruises.
An investigation conducted by both units revealed unauthorised access to personal information, including names, social security numbers and the credit card information of some guests and employees, according to Reuters.
The units, which account for 30% of Carnival Corporation’s capacity as of 30 November, said they acted to shut down the attack quickly and prevent further access to data.
-
Apple just released an emergency patch for a zero-day exploited in the wildNews Apple is warning millions of users of iPhones, iPads and Macs to update their software to protect against an out-of-bounds write vulnerability
-
Google's new Jules coding agent is free to use for anyone – and it just got a big update to prevent bad code outputNews Jules came out of beta and launched publicly earlier this month, but it's already had a big update aimed at improving code quality and safety.
-
Average ransom payment doubles in a single quarterNews Targeted social engineering and data exfiltration have become the biggest tactics as three major ransomware groups dominate
-
BlackSuit ransomware gang taken down in latest law enforcement sting – but members have already formed a new groupNews The notorious gang has seen its servers taken down and bitcoin seized, but may have morphed into a new group called Chaos
-
Google cyber researchers were tracking the ShinyHunters group’s Salesforce attacks – then realized they’d also fallen victimNews In an update to an investigation on the ShinyHunters group, Google revealed it had also been affected
-
Nearly one-third of ransomware victims are hit multiple times, even after paying hackersNews Many ransomware victims are being hit more than once, largely thanks to fragmented security tactics
-
75% of UK business leaders are willing to risk criminal penalties to pay ransomsNews A ransom payment ban is a great idea - until you're the one being targeted...
-
The Scattered Spider ransomware group is infiltrating Slack and Microsoft Teams to target vulnerable employeesNews The group is using new ransomware variants and new social engineering techniques - including sneaking into corporate teleconferences
-
Hackers breached a 158 year old company by guessing an employee password – experts say it’s a ‘pertinent reminder’ of the devastating impact of cyber crimeNews A Panorama documentary exposed hackers' techniques and talked to the teams trying to tackle them
-
The ransomware boom shows no signs of letting up – and these groups are causing the most chaos
News Thousands of ransomware cases have already been posted on the dark web this year
