Orbitz announced today that it has discovered evidence of a data breach, making it just another of the many companies recently afflicted. Between October and December of last year, hackers may have accessed consumer data submitted to a legacy website between January 1, 2016 and June 22, 2016. Additionally, Orbitz partner platform data submitted between January 1, 2016 and December 22, 2017 may also have been breached. The company discovered signs of the breach on March 1st and estimates that approximately 880,000 credit cards may have been impacted.
While social security numbers, passport and travel itinerary information don't appear to have been accessed, names, payment card information, dates of birth, phone numbers, email addresses, physical and billing addresses and gender may have been. However, Orbitz said that it doesn't have direct evidence that any of this information was actually stolen. Besides information brokers like Equifax, travel-related services have been juicy targets for hackers with tons of stored IDs -- hotel chains like Hyatt, Hilton and Intercontinental have all been hit.