Hackers stole personal information of employees and passengers of Carnival Corporation, according to documents filed by the cruise company with the U.S. Securities and Exchange Commission.
Carnival didn't say how many guests and employees have been affected.
The British-American cruise operator is investigating the ransomware attack on one of its information databases. Hackers hijacked its systems Aug. 15.
The world's largest travel leisure company with a fleet of more than 100 vessels doesn't believe the data breach will have a significant effect on the company's business or financial results, it said in the SEC filing.
Nevertheless, it expects the compromise included the theft of files and guest and workers' personal data, which could result in "potential claims from employees, guests, stockholders or regulatory agencies."
Carnival immediately notified authorities and sought legal advice. Carnival has employed cybersecurity experts to evaluate the attack and immediately secure and repair its database, the filing said.
The company launched its new Mardi Gras vessel Sunday. Mardi Gras, expected to sail from Port Canaveral, Florida, in February, has an onboard roller coaster, restaurants, six themed zones and 2,600 rooms. The company has been affected by travel restrictions brought about by the coronavirus pandemic and has said it would reduce its fleet by 15 vessels.
Carnival suspended cruises until at least Oct. 31. A no-sail order by the Centers for Disease Control and Prevention is in effect until September.
