Orbitz said a data breach affecting 880,000 payment cards may have exposed customer's confidential information to hackers, CNBC reported.
Investigations conducted by the Expedia subsidiary found that the personal information of customers who had made bookings via the travel site between Jan. 1, 2016, and Dec. 22, 2017, may have been accessed by a cyber attacker.
According to Orbitz, the hacker had likely accessed information such as names, payment card information, phone numbers, physical addresses and dates of birth however, the company assured that Social Security numbers were not involved in the incident.
"Orbitz took immediate steps to investigate the incident and enhance security and monitoring of the affected platform," the travel site said in a statement.
Forensic investigators and cyber security experts were brought in to work with law enforcement and take "measures to effectively prevent any unauthorized access and enhance security."
Orbitz said that, upon finding out about the security breach, it had immediately notified its customers and business partners.
While the names of affected business partners have not been revealed, The Wall Street Journal noted that American Express Co. had separately said customers who had made travel bookings through its representatives had been impacted by the cyberattack.
"Ensuring the safety and security of the personal data of our customers and our partners' customers is very important to us," Orbitz said, per Engadget. "We deeply regret the incident, and we are committed to doing everything we can to maintain the trust of our customers and partners."
This attack follows a strew of major data breaches that occurred last year.
The Verge reported that 3 billion Yahoo user accounts were impacted by one such security breach while another incident affected 143 million people whose personal information was stolen from Equifax.
© 2025 Newsmax. All rights reserved.