Orbitz says a legacy travel booking platform may have been hacked, potentially exposing the personal information of people that made purchases and scheduled trips between Jan. 1, 2016 and Dec. 22, 2017.
The company said about 880,000 payment cards were impacted.
Orbitz said data that was likely exposed includes:
- Name
- Payment card information
- Date of birth
- Phone number
- Email address
- Physical and/or billing address
- Gender
The company said evidence suggests an attacker may have accessed information stored on this consumer and business partner platform between Oct. 1, 2017 and Dec. 22, 2017.