Adam LePosa reports:
Princess Cruises and Holland America Line report that a data breach may have compromised employee and guest personal information.
According to a statement from both cruise lines, in late May 2019 Princess and Holland America identified a series of deceptive emails sent to employees that resulted in unauthorized third-party access to some employee email accounts. Both lines shut down the attack to prevent further unauthorized access, as well as retained a major cybersecurity firm to investigate the matter and reinforce security and privacy protocols.
Read more on Travel Agent Central.
And they’re first disclosing this now???? Why the significant gap between discovery of a problem to notification?
The undated notice from Princess Cruises can be found here. The same notice from Holland America can be found here.
Thanks to the reader who sent this in.