Data breach of 880,000 credit cards and personal information possibly disclosed says Orbitz



This case (1029115) in which a data breach of legacy travel agency websites may have exposed payment information is documented in Advisen’s Cyber Loss Data

On March 20, 2018, Orbitz disclosed news of a data breach that 880,000 payment cards were accessed from one of its old websites. It stated that it may have been hacked sometime between October 1 2017 and December 22 2017. This is according to Engadget. The current website was allegedly not compromised by the hack.

The data breach is said to have revealed name, address, payment card details, birth date, telephone, email, and gender provided to Orbitz by consumers and business partners. It was noted that Social Security data was not stolen, though.

Orbitz is providing those affected by the data breach with a year of credit monitoring as well as identity protection service in countries where the service is offered.


Company Data

At the time of writing, Expedia owns Orbitz.
It is headquartered in the United States.
Its SIC code is 4724 – Travel Agencies.
Its NAICS code is 561510 – Travel Agencies.



Advisen data consists of publicly verifiable source material.

License Advisen’s cyber loss data to gain access to other losses associated with this and other companies, including clash events. Advisen’s loss database includes more than 55,000 cyber events. This loss data is housed in a structured, relational database, and is mapped to the appropriate company from our database of over 20 million insureds. Learn more about Advisen’s cyber loss data.