Carnival Corporation has disclosed a data breach after attackers gained access to some of its IT systems and the personal, financial, and health info belonging to customers, employees, and crew. The accessed information included names, addresses, phone numbers, passport numbers, dates of birth, health information, and, in some limited instances, additional personal info like Social Security or national ID numbers. In December 2020, Carnival was hit by a second (previously undisclosed) ransomware attack with “investigation and remediation phases”” still ongoing.”
Source: https://www.bleepingcomputer.com/news/security/carnival-cruise-hit-by-data-breach-warns-of-data-misuse-risk/