Carnival Corporation customer data leak
Data Leak
Summary
Hide ▲
Show ▼
Carnival Corporation confirmed a customer data leak that exposed personal information for 5,995,277 people, making this a large-scale privacy and identity-risk event. The exposed data included names, dates of birth, email addresses, genders, geographic locations, and loyalty program details. The leak followed a social engineering intrusion into an employee account and was later linked publicly to ShinyHunters. The disclosure matters because the stolen records create downstream risk for fraud, account abuse, and targeted extortion.
Related Happenings
7-Eleven franchisee-docs and Salesforce data leak
Data Leak
First: 18.05.2026 14:25
Last: 18.05.2026 14:25
Sources 1
About this happening:
**7-Eleven** confirmed a **April 8, 2026** intrusion into systems used to store **franchisee documents**, and **ShinyHunters** later claimed the theft of **more than 600,000 Sales...
7-Eleven franchisee-docs and Salesforce data leak
Data LeakAbout this happening: **7-Eleven** confirmed a **April 8, 2026** intrusion into systems used to store **franchisee documents**, and **ShinyHunters** later claimed the theft of **more than 600,000 Sales...
Latest development: 26.05.2026 10:01
Have I Been Pwned analyzed the leaked 7-Eleven data and estimated that the breach exposed personal information for 185,300 people, including names, dates of birth, unique email addresses, phone numbers, and physical addresses. The exposed archive was tied to ShinyHunters' extortion campaign against 7-Eleven and followed the group's leak-site posting after ransom demands were not met.
BlackFile victims' Salesforce and SharePoint data leak
Data Leak
First: 24.04.2026 21:26
Last: 24.04.2026 21:26
Sources 1
About this happening:
BlackFile's **stolen documents** were published on a **dark web leak site**, exposing employee and business records taken from **Salesforce** and **SharePoint** environments. The...
BlackFile victims' Salesforce and SharePoint data leak
Data LeakAbout this happening: BlackFile's **stolen documents** were published on a **dark web leak site**, exposing employee and business records taken from **Salesforce** and **SharePoint** environments. The...
France Titres ANTS portal user data leak
Data Leak
First: 24.04.2026 17:31
Last: 24.04.2026 17:31
Sources 1
About this happening:
France Titres confirmed a **security breach** on the **ANTS portal** that may have exposed **millions of users**, and a **database for sale** claim suggests the exposure could be...
France Titres ANTS portal user data leak
Data LeakAbout this happening: France Titres confirmed a **security breach** on the **ANTS portal** that may have exposed **millions of users**, and a **database for sale** claim suggests the exposure could be...
CarGurus 12.4 million-record data leak
Data Leak
First: 24.02.2026 20:08
Last: 24.02.2026 20:08
Sources 1
About this happening:
A **6.1GB archive** tied to **CarGurus** was published, exposing **12.4 million records** and increasing phishing and scam risk for affected users. The dataset includes **email ad...
CarGurus 12.4 million-record data leak
Data LeakAbout this happening: A **6.1GB archive** tied to **CarGurus** was published, exposing **12.4 million records** and increasing phishing and scam risk for affected users. The dataset includes **email ad...
Betterment customer data leak after January systems breach
Data Leak
First: 05.02.2026 13:16
Last: 05.02.2026 13:16
Sources 1
About this happening:
**Betterment** suffered a **systems breach in January** that exposed personal information from **about 1.4 million accounts**. The stolen dataset included **email addresses, names...
Betterment customer data leak after January systems breach
Data LeakAbout this happening: **Betterment** suffered a **systems breach in January** that exposed personal information from **about 1.4 million accounts**. The stolen dataset included **email addresses, names...
Timeline
-
28.05.2026 13:49 1 articles · 2h ago
Social engineering attack gains access to Carnival Corporation IT systems
Exploitation ObservedAn unauthorized actor used social engineering to deceive a Carnival Corporation employee and gain access to a limited portion of the company's IT system, forming the April 10 breach that affected customer data.
Show sources
- Carnival Cruise confirms data breach affecting nearly 6 million people — www.bleepingcomputer.com — 28.05.2026 13:49
-
28.05.2026 13:49 1 articles · 2h ago
Carnival Corporation identifies unauthorized activity in employee account
Detection Ioc UpdateCarnival Corporation's IT security team identified unauthorized activity involving an employee's account after the social engineering intrusion into its systems.
Show sources
- Carnival Cruise confirms data breach affecting nearly 6 million people — www.bleepingcomputer.com — 28.05.2026 13:49
-
28.05.2026 13:49 1 articles · 2h ago
Carnival Corporation determines personal information was illegally copied
Victim Impact UpdateCarnival Corporation later determined that the bad actor illegally copied personal information from its systems, indicating that the breach had progressed from unauthorized access to confirmed data exfiltration.
Show sources
- Carnival Cruise confirms data breach affecting nearly 6 million people — www.bleepingcomputer.com — 28.05.2026 13:49
-
28.05.2026 13:49 2 articles · 2h ago
Carnival Corporation begins notifying 5,995,277 customers of data breach
Initial DisclosureCarnival Corporation began notifying 5,995,277 customers that stolen data included names, dates of birth, email addresses, genders, geographic locations, and loyalty program details tied to the Mariner Society loyalty program.
Show sources
- Carnival Cruise confirms data breach affecting nearly 6 million people — www.bleepingcomputer.com — 28.05.2026 13:49
- Carnival Cruise confirms data breach affecting nearly 6 million people — www.bleepingcomputer.com — 28.05.2026 13:49