What happened at Orbitz?
Reports from March 20 state that up to 880,000 payment card numbers and related information could’ve been exposed in a data breach. Orbitz, which is owned by Expedia, apparently had two different data disclosures.
In the first disclosure, an attacker may have accessed customers’ personal information for some purchases made on orbitz.com between Jan. 1, 2016, and June 22, 2016, according to news reports.
In the second disclosure, customer data from other travel sites that used Orbitz to book travel between Jan. 1, 2016, and Dec. 22, 2016, may have been compromised, according to published reports. One of the affected sites was the American Express site Amextravel.com.
The related information that could have been exposed includes:
Customer’s full name
Date of Birth
Physical or billing address