Received this email from Carnival
Carnival Corporation (the “Company”), the parent of Carnival Cruise Line, values the trust you place in us and takes the privacy and security of your information seriously. Unfortunately, we are writing to inform you of a recent cybersecurity event affecting certain of your personal information. We deeply regret this incident and any concern it may cause. Please read this notice carefully as it provides up‑to‑date information on what happened and what we are doing.
What happened:
On April 14, 2026, the Company’s IT security team identified unauthorized activity involving an employee’s account. An unauthorized actor used social engineering to deceive an employee to gain access to a limited portion of the Company’s IT system. The Company acted swiftly to block the unauthorized activity and immediately began working with third party security experts to further strengthen our security and to conduct a thorough investigation. On April 22, 2026, the Company first determined that the bad actor illegally copied personal information.
What Personal Information was involved:
The Company has been conducting a thorough and time‑consuming analysis of the impacted files to determine what personal information they contained and to whom that information belongs. We have determined that your full name, address, email address, phone number, and passport number were obtained.
What we are doing:
In addition to the enterprise‑wide security measures the Company had in place prior to the incident, we have taken steps to further safeguard our systems, including enhancing our security and monitoring controls. The Company will continue to advance its IT security and data privacy controls to stay ahead of an ever‑evolving threat landscape.
What you can do:
We encourage you to take the following precautions:
Remain vigilant against threats of identity theft or fraud and regularly review and monitor your account statements and credit history for any signs of unauthorized transactions or activity.
If you ever suspect that you are the victim of identity theft or fraud, you can contact your local police or law enforcement agency.
For more information:
The Company has established a dedicated email to answer questions about the cybersecurity event. If you have any questions, please reach out to us at
carnivalcorp@transunion.com.
Sincerely,
Carnival Corporation