The California Office of the Attorney General reported a data breach involving Hurtigruten on March 2, 2021. The breach occurred on December 14, 2020, when an unauthorized actor gained remote access to the company's network, potentially affecting a limited number of guests. The involved information included names, dates of birth, and for some, passport details. The number of affected individuals is currently unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-538836
TPRM report: https://www.rankiteo.com/company/hurtigrutengroup
"id": "hur710072825",
"linkid": "hurtigrutengroup",
"type": "Breach",
"date": "12/2020",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Unknown',
'industry': 'Travel and Tourism',
'name': 'Hurtigruten',
'type': 'Company'}],
'attack_vector': 'Remote Access',
'data_breach': {'number_of_records_exposed': 'Unknown',
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Dates of Birth',
'Passport Details']},
'date_detected': '2020-12-14',
'date_publicly_disclosed': '2021-03-02',
'description': 'The California Office of the Attorney General reported a data '
'breach involving Hurtigruten on March 2, 2021. The breach '
'occurred on December 14, 2020, when an unauthorized actor '
"gained remote access to the company's network, potentially "
'affecting a limited number of guests, with involved '
'information including names, dates of birth, and for some, '
'passport details. The number of affected individuals is '
'currently unknown.',
'impact': {'data_compromised': ['Names',
'Dates of Birth',
'Passport Details']},
'references': [{'date_accessed': '2021-03-02',
'source': 'California Office of the Attorney General'}],
'threat_actor': 'Unauthorized Actor',
'title': 'Hurtigruten Data Breach',
'type': 'Data Breach'}