3 Data Breaches Disclosed This Week: J.Crew, T-Mobile, and Carnival

The separate incidents show how data theft knows no market-based limits.

Dark Reading Staff, Dark Reading

March 6, 2020

2 Min Read
Dark Reading logo in a gray background | Dark Reading

A series of enterprise data breaches disclosed this week underscores how criminals target various industries to steal and monetize data. The breaches at J.Crew, T-Mobile, and two units of cruise-line operator Carnival Corp., show that millions of customers can feel the effect of even the simplest exploit.

In its disclosure letter to customers, J.Crew said that customers' email addresses and passwords were obtained by an unauthorized third party and that significant additional personal information could have been accessed in the April 2019 incident. No information was provided on the number of customers affected, but the notification noted that the breached accounts had been de-activated pending a customer telephone call and password re-set.

T-Mobile disclosed a breach affecting an unknown number of customers, though gaining that information is complicated because of the path taken to the customer information: Employee data was breached, some of which contained customer information. In a notification document, the wireless carrier said, "Information accessed illegally may have included names and addresses, phone numbers, account numbers, rate plans and features, and billing information."

Finally, Holland America Line and Princess Cruises, two units of Carnival Corp, disclosed a breach from May 2019 in which personal information including mail accounts, names, Social Security numbers, and credit card information of some employees and customers were illegally accessed. While no numbers were given regarding victims, a notice with the California Attorney General's office indicates that more than 500 individuals were affected. Carnival said that when the breach was discovered, it acted quickly to shut down the unauthorized access.

For more, read here, here, and here.

Edgepromohorizontal.jpgCheck out The Edge, Dark Reading's new section for features, threat data, and in-depth perspectives. Today's featured story: "The Perfect Travel Security Policy for a Globe-Trotting Laptop."

About the Author

Dark Reading Staff

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

See more from Dark Reading Staff
Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Subscribe

You May Also Like

More Insights
Webinars
More Webinars
Events
More Events

Editor's Choice

A laptop screen showing a blue screen of death
Сloud Security
2 Zero-Day Bugs in Microsoft's Nov. Update Under Active Exploit2 Zero-Day Bugs in Microsoft's Nov. Update Under Active Exploit
byJai Vijayan, Contributing Writer
Nov 12, 2024
6 Min Read
Red ZERO-DAY text amid yellow binary code
Cyberattacks & Data Breaches
Zero-Days Win the Prize for Most Exploited VulnsZero-Days Wins the Prize for Most Exploited Vulns
byDark Reading Staff
Nov 13, 2024
1 Min Read
Citrix logo on company building
Сloud Security
Citrix Patches Zero-Day Recording Manager BugsCitrix Patches Zero-Day Recording Manager Bugs
byJai Vijayan, Contributing Writer
Nov 12, 2024
5 Min Read
Reports
More Reports
Webinars
More Webinars
White Papers
More Whitepapers
Events
More Events