Orbitz, an online travel booking company based in Chicago, a subsidiary of Expedia, reveals that one of its older websites has been hacked, exposing nearly 880,000 payment card numbers of people who made online purchases.
The data breach incident, which was detected earlier this month, likely occurred between October 2016 and December 2017, potentially exposing customer information to hackers.
According to the company, hackers may have accessed payment card information stored on a consumer and business partner platform, along with customers' personal information, including name, address, birthdate, phone number, email address and gender.
Orbitz worked closely with cybersecurity experts and law enforcement agents to investigate the breach and confirms that Social Security numbers for US customers. UU. Were not exposed in this incident.
The company states it has improved the security of its compromised platform, although it assures its customers that the current Orbitz.com website was not affected.
“We deeply regret the incident and are committed to doing everything possible to maintain the trust of our customers and partners”, said Orbitz in a statement. Orbitz actualmente está trabajando para notificar a los miles de clientes afectados y planea ofrecer un año gratis de monitoreo de crédito y servicio de protección de identidad.
Dado que la información de la tarjeta de pago ahora está en manos de los ciberdelincuentes, se aconseja a los clientes que sigan de cerca los estados de cuenta de su tarjeta de crédito e informen cualquier cargo no autorizado al banco emisor.