Azamara Cruises became aware of unauthorized access to a single email account on August 19, 2024.
The company acted quickly to revoke access and began investigating the incident. During the investigation, Azamara discovered that the unauthorized individual might have downloaded the contents of the email account between August 16 and August 19, 2024. Following this, Azamara conducted a thorough review of the affected emails, identifying which individuals’ information may have been involved. Azamara then took internal steps to locate and confirm the address information of those affected.
By January 15, 2025, Azamara confirmed that personal information for certain individuals was contained in the compromised email account.
The information included names and government/state identification numbers, potentially putting these individuals at risk of identity theft. In response, Azamara promptly notified the affected individuals and took steps to further secure its systems to prevent future unauthorized access. The company also assessed its internal security measures and made plans to implement additional safeguards to protect customer data in the future.
Azamara has been offering complimentary credit monitoring and identity theft protection services for one year through Experian to individuals whose information may have been compromised. The services are provided at no cost to affected individuals, with guidance on how to monitor credit activity and protect against potential identity theft. Additionally, Azamara provided instructions on how to place fraud alerts and security freezes on credit files, and advised individuals to remain vigilant by regularly checking account statements and credit reports for suspicious activity.
As part of their response, Azamara Cruises has also notified relevant state regulators, including those from the three major credit reporting agencies. They are offering further assistance to individuals in case they notice any fraud, including providing information on how to report identity theft to the Federal Trade Commission, state authorities, or law enforcement. The company has also ensured that those affected by the breach have access to a wide range of resources to help them recover from any potential misuse of their information, including credit monitoring services and identity restoration assistance.
Reference:
