Data breach exposed 880,000 payment cards


In March 2018, the travel search engine disclosed that 880,000 customers who made purchases in 2016 and 2017 may have been affected by a recently discovered data breach.
A hacker had used a legacy website to gain access to payment-card and other personal information. The company says the data breach was discovered 1st March while auditing the platform in question and says the hackers gained access to the information between 1st October and 22nd December 2017.

Potentially exposed personal information includes birthdays, addresses, full names, phone numbers, email addresses and gender.

The company wasn't able to confirm exactly what was taken from the platform leaving their customers unclear what form of fraud they should be diligent about. However, in an effort to maintain the trust of its customers and partners, the company is offering a year of complimentary credit monitoring and identity protection services.

Book a consultation

Want to discuss this case? You can purchase a 30 minute conference call with our analysts to discuss this case and the implications it has for your organisation. Just select the time and date that works for you:



We've done the analysis so you can make the decisions

When purchasing a minimum of 5 Case Studies
$699.99 if buying less than 5.

  • Detailed cause & effect analysis
  • Lessons learnt catalogued
  • Preventive controls extracted
Add to Cart
Heads up! Want to try before you buy? You can download our FREE demo case study here