The California Office of the Attorney General reported that Carnival Corporation & PLC experienced a data breach involving unauthorized access to employee email accounts between April 11, 2019, and July 23, 2019. The incident potentially compromised personal information including names, addresses, Social Security numbers, and financial information, affecting an unspecified number of individuals. The breach was reported on March 3, 2020.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-187901
TPRM report: https://www.rankiteo.com/company/carnival-corporation
"id": "car209072825",
"linkid": "carnival-corporation",
"type": "Breach",
"date": "4/2019",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Travel and Leisure',
'name': 'Carnival Corporation & PLC',
'type': 'Corporation'}],
'attack_vector': 'Email Compromise',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'addresses',
'Social Security numbers',
'financial information']},
'date_publicly_disclosed': '2020-03-03',
'description': 'Unauthorized access to employee email accounts potentially '
'compromised personal information including names, addresses, '
'Social Security numbers, and financial information.',
'impact': {'data_compromised': ['names',
'addresses',
'Social Security numbers',
'financial information']},
'initial_access_broker': {'entry_point': 'Email Compromise'},
'references': [{'source': 'California Office of the Attorney General'}],
'title': 'Carnival Corporation & PLC Data Breach',
'type': 'Data Breach'}