TripAdvisor Site Hit by Data Breach
TripAdvisor’s Viator unit, which provides online travel bookings and review, announced that it had been hit with a data breach that could affect approximately 1.4 million of its customers.
The company said on Friday it was in the process of notifying affected customers, and that the breach could have exposed credit card data, as well as the e-mail address, password, and Viator “nickname” for users who have created an account on the site.
The company was notified of unauthorized charges on a number of its customers’ credit cards on September 2. Viator said that it immediately hired forensic investigators and notified law enforcement.
The company, which was acquired by TripAdvisor last July, said that it believes approximately 880,000 customers may have had their payment card details compromised, including encrypted credit or debit card number, card expiration date, name, billing address, and email address, in addition to approximately 560,000 customers who it believes may have had their Viator account information compromised.
The San-Francisco-based company said that it does not believe that credit card validation codes have been compromised, nor have debit card PINs, as Viator does not collect them.
Viator recommended that all customers monitor their credit card activity, and for members to reset their password on Viator’s website, as well as any other site where they may have used the same password.
The company said that it is offering free identity protection services, including credit monitoring, for its customers in the United States. It also said that customers will not be held responsible for any fraudulent charges, provided that they are reported in a timely manner.
(Photo: Accura Media Group)