Princess Cruises
Company Details
Linkedin ID:
princess-cruises
Website:
Employees number:
14,486
Number of followers:
302,544
NAICS:
5615
Industry Type:
Homepage:
spr.ly
IP Addresses:
0
Company ID:
PRI_2069297
Scan Status:
In-progress
Princess Cruises Company CyberSecurity Posture
spr.ly
Princess is the world’s leading premium cruise line operating a fleet of modern ships visiting over 380 destinations around the globe on more than 160 itineraries. Each moment on Princess is one of wonderful discovery where guests can relax and explore. The choices are endless, from invigorating activities to more relaxing pursuits, and enable guests to share special moments with family and friends and enjoy unique travel experiences that create inspiring memories. At the forefront of innovation, Princess MedallionClass elevates service levels through enhanced guest experiences before and during cruise vacations. Exciting career opportunities in many departments await your discovery. Whether you are in customer service, food and beverage, or fleet operations (just to name a few), we’re certain you will find a career path at Princess Cruises that will keep you engaged and growing for years to come. Teams on shore support colleagues onboard, as together we create memorable experiences—dining, entertainment, exploration, and celebration—for our guests. Exceptional customer service is the cornerstone of our success thanks to more than 30,000 of the cruise industry’s finest team members on land and at sea. We create a friendly and welcoming environment not only for our onboard guests, but for our seagoing and land-based teams as well. The result is a remarkable number of loyal staff. We respect the seas we sail and destinations we visit. Our ships adhere to international rules regulating operations from fire safety to navigation, maritime security, and environmental stewardship. Onboard medical facilities meet or exceed standards set by the American College of Emergency Physicians. There’s no limit to how far you can go with Princess Cruises!
Princess Cruises A.I CyberSecurity Scoring
Princess Cruises Risk Score (AI oriented)Between 750 and 799
Princess Cruises
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Princess Cruises Global Score (TPRM)XXXX
Princess Cruises
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Princess Cruises Company CyberSecurity News & History
Past Incidents
10
Attack Types
2
AIDA Cruise Ships
Ransomware
Rankiteo Explanation
Attack threatening the organization’s existence
Description: In December 2020, AIDA Cruises faced a severe IT disruption attributed to a **DoppelPaymer ransomware attack**, crippling critical systems including phone and email communications. The incident forced the cancellation of **New Year’s Eve cruises**, including the *AIDAperla* voyage, leaving passengers stranded and operations paralyzed. The company publicly acknowledged the outage via website notifications, confirming that customers could not reach them through standard channels. While the full scope of data compromise remains undisclosed, the attack disrupted core business functions, leading to **financial losses from canceled bookings**, **reputational damage**, and **operational downtime**. The ransomware’s impact extended beyond IT systems, directly affecting customer trust and revenue streams during a peak holiday period. The incident underscores the vulnerability of the travel industry to cyber extortion, particularly when critical infrastructure like communication platforms is targeted.
AIDA Cruises
Ransomware
Rankiteo Explanation
Attack threatening the organization's existence
Description: AIDA Cruises fell prey to a ransomware attack which disconnected all its ships from the internet. The cruise line informed its passengers that they had IT restrictions and because of that they had to cancel the trip. The attackers have shared ransom demand note with the AIDA or else they will leak sensititve informtion.
Carnival Corporation & PLC
Breach
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: The California Office of the Attorney General reported that Carnival Corporation & PLC experienced a data breach involving unauthorized access to employee email accounts between April 11, 2019, and July 23, 2019. The incident potentially compromised personal information including names, addresses, Social Security numbers, and financial information, affecting an unspecified number of individuals. The breach was reported on March 3, 2020.
Carnival Corporation and plc
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The California Office of the Attorney General reported on October 18, 2021, that Carnival Corporation and plc experienced a data breach with unauthorized access to email accounts detected on March 19, 2021. The impacted personal information may include names, addresses, phone numbers, passport numbers, and health information, but the total number of individuals affected is unknown.
Carnival Corporation and plc
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: On August 15, 2020, Carnival Corporation and plc experienced a data breach due to unauthorized third-party access to its IT systems. The incident, reported by the California Office of the Attorney General on February 4, 2021, exposed sensitive personal information of both guests and employees. Compromised data included names, addresses, passport numbers, and Social Security numbers—highly sensitive identifiers that could lead to identity theft, financial fraud, or targeted phishing attacks. The breach underscored vulnerabilities in Carnival’s cybersecurity defenses, raising concerns about the protection of customer and employee data. Given the nature of the stolen information, the incident posed significant risks of long-term reputational damage, regulatory scrutiny, and potential legal liabilities. The exposure of passport and Social Security numbers, in particular, elevated the severity, as such data is often exploited in large-scale fraud schemes or sold on dark web marketplaces. Carnival’s failure to prevent the breach highlighted systemic weaknesses in safeguarding critical personal data against sophisticated cyber threats.
Princess Cruises & Holland America Line of Carnival Corporation & PLC
Ransomware
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: In May 2019, Carnival Corp., the parent company of Princess Cruises and Holland America Cruise Line, fell victim to a targeted **ransomware attack** in Florida, USA. The incident began when hackers gained unauthorized access to an employee’s account, allowing them to monitor internal email traffic and identify high-value targets within the organization. The attackers then encrypted portions of Carnival Corp.’s IT systems, disrupting operations and potentially exposing sensitive corporate and employee data. While the full scope of the breach was not publicly detailed, the attack highlighted vulnerabilities in the company’s cybersecurity defenses, particularly around credential protection and email security. The encryption of critical systems likely caused operational disruptions, financial losses from recovery efforts, and reputational damage. The attack also raised concerns about the potential exposure of employee and customer data, though no large-scale data leak was confirmed in public reports. Carnival Corp. had to invest in incident response, system restoration, and enhanced security measures to mitigate future risks.
Carnival Cruise Line
Breach
Rankiteo Explanation
Attack threatening the organization’s existence
Description: On August 15, 2020, Carnival Cruise Line experienced a data breach reported by the California Office of the Attorney General on October 13, 2020. Unauthorized actors gained access to the personal information of guests, employees, and crew members. The compromised data included names, addresses, phone numbers, and—potentially—highly sensitive details such as Social Security numbers and health records. The exact number of affected individuals remains undisclosed, but the breach exposed both internal (employee/crew) and external (guest) data, heightening concerns over identity theft, financial fraud, and privacy violations. The incident underscores significant vulnerabilities in Carnival’s data protection measures, particularly given the broad scope of exposed personally identifiable information (PII) and protected health information (PHI). The breach’s impact extends beyond immediate financial risks, posing long-term reputational damage and regulatory scrutiny for the company.
Carnival Corporation & PLC hit by a data breach in Miami, FL, USA
Ransomware
Rankiteo Explanation
Attack threatening the organization’s existence
Description: In March 2021, Carnival Corp., a Miami-based cruise operator, suffered a **ransomware attack** initiated via a phishing email. The attackers infiltrated the IT system of one of its cruise liners, gaining unauthorized access to **personal data of both employees and customers**. While the breach was detected on March 19th, the company assessed the risk of data misuse as **low**. This incident was part of a broader pattern, as Carnival Corp. had endured **multiple ransomware attacks over a two-year period**, exposing vulnerabilities in its cybersecurity defenses. The compromised data included sensitive information, though the full extent of the exploitation remains unclear. The attack disrupted internal systems and raised concerns over **customer trust and regulatory compliance**, given the scale of exposed personal records.
Holland America Line
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: Holland America Line had a data breach which compromised employee and guest personal information. In late May 2019, a series of deceptive emails were sent to employees that resulted in unauthorized third-party access to some employee email accounts. Holland America Line was shut down to prevent further unauthorized access. The unauthorized third-party access compromsed certain email accounts containing employee and guest personal information, including names, Social Security numbers, government identification numbers, such as passport numbers, national identity card numbers, credit card, and financial account information, and health-related information.
Princess Cruises
Breach
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: Princess Cruises had a data breach which compromised employee and guest personal information. In late May 2019, a series of deceptive emails were sent to employees that resulted in unauthorized third-party access to some employee email accounts. Princess cruises was shut down to prevent further unauthorized access. The unauthorized third-party access compromsed certain email accounts containing employee and guest personal information, including names, Social Security numbers, government identification numbers, such as passport numbers, national identity card numbers, credit card, and financial account information, and health-related information.
Princess Cruises Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Princess Cruises
Incidents vs Travel Arrangements Industry Average (This Year)
No incidents recorded for Princess Cruises in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Princess Cruises in 2025.
Incident Types Princess Cruises vs Travel Arrangements Industry Avg (This Year)
No incidents recorded for Princess Cruises in 2025.
Incident History — Princess Cruises (X = Date, Y = Severity)
Princess Cruises cyber incidents detection timeline including parent company and subsidiaries
Princess Cruises Company Subsidiaries
Princess is the world’s leading premium cruise line operating a fleet of modern ships visiting over 380 destinations around the globe on more than 160 itineraries. Each moment on Princess is one of wonderful discovery where guests can relax and explore. The choices are endless, from invigorating activities to more relaxing pursuits, and enable guests to share special moments with family and friends and enjoy unique travel experiences that create inspiring memories. At the forefront of innovation, Princess MedallionClass elevates service levels through enhanced guest experiences before and during cruise vacations. Exciting career opportunities in many departments await your discovery. Whether you are in customer service, food and beverage, or fleet operations (just to name a few), we’re certain you will find a career path at Princess Cruises that will keep you engaged and growing for years to come. Teams on shore support colleagues onboard, as together we create memorable experiences—dining, entertainment, exploration, and celebration—for our guests. Exceptional customer service is the cornerstone of our success thanks to more than 30,000 of the cruise industry’s finest team members on land and at sea. We create a friendly and welcoming environment not only for our onboard guests, but for our seagoing and land-based teams as well. The result is a remarkable number of loyal staff. We respect the seas we sail and destinations we visit. Our ships adhere to international rules regulating operations from fire safety to navigation, maritime security, and environmental stewardship. Onboard medical facilities meet or exceed standards set by the American College of Emergency Physicians. There’s no limit to how far you can go with Princess Cruises!
Loading...
Princess Cruises Similar Companies
Costa Crociere S.p.A.
Costa belongs to the Carnival Corporation & plc Group, listed on the London and New York stock exchanges, the largest cruise company in the world. Costa, the only Italian cruise company flying the Italian flag, has been sailing the world’s seas for more than 75 years, offering its guests a differe
BCD Travel
BCD Travel helps companies travel smart and achieve more. We drive program adoption, cost savings and talent retention through digital experiences that simplify business travel. Our 15,000+ dedicated team members service clients in 170+ countries as we shape a sustainable future for business travel.
MSC Cruises
Headquartered in Geneva, Switzerland, MSC Cruises is the world’s third largest cruise lines and the market leader in Europe, South America, the Middle East and Southern Africa, with a strong and growing presence in North America and the Far East. The MSC Cruises fleet consists of 22 modern ships wi
Norwegian Cruise Line Holdings Ltd.
Norwegian Cruise Line Holdings Ltd. (NYSE: NCLH) is a leading global cruise company which operates Norwegian Cruise Line, Oceania Cruises and Regent Seven Seas Cruises. With a combined fleet of 32 ships and approximately 66,500 berths, NCLH offers itineraries to approximately 700 destinations worl
At Royal Caribbean Group, we deliver unforgettable vacations to guests who trust us with life’s greatest moments. We build the best ships, and even better careers, all while doing the right thing. We are passionate. We are innovative. We are unstoppable. We open the world to our employees. Your jour
CWT
CWT is a global business travel and meetings specialist, with whom companies and governments partner to keep their people connected, in traditional business locations and some of the most remote and inaccessible parts of the globe. A private company – owned through funds managed by a group of leadin
DER Touristik vormals REWE Touristik GmbH
DER TOURISTIK GROUP AUF WACHSTUMSKURS Die DER Touristik Group gehört heute zu den führenden europäischen Reisekonzernen. Sie vereint unter ihrem Dach verschiedene Geschäftsfelder rund ums Thema Reisen und agiert seit 2018 strukturell als Holding mit vier Divisions. Durch den Zukauf der europäische
Enterprise Mobility
At Enterprise Mobility™ we are paving a new way forward by creating better experiences for how we move. We give people around the world the ability to connect in ways that suit their unique needs. It’s a bold idea that has defined our purpose-led, people-first organization for over 65 years, and it’
Hertz
Hertz is one of the world’s largest mobility companies, and through its indirect subsidiary, The Hertz Corporation, operates the Hertz, Dollar, and Thrifty vehicle rental brands throughout North America, Europe, the Caribbean, Latin America, Africa, the Middle East, Asia, Australia, and New Zealand.
.png)
Princess Cruises CyberSecurity News
November 20, 2025 08:00 AM
Cybersecurity on Cruises: How Safe Is the Internet at Sea?
How safe is the internet on cruise ships? Here's what you should know, from cybersecurity attacks and how cruise ships prevent them to how...
September 09, 2025 07:00 AM
Podcast: KVH on connectivity, cybersecurity, and crew wellbeing
Marine Log's Listen Up! podcast is back with an episode featuring KVH to discuss how next-gen connectivity is transforming maritime.
April 25, 2025 07:00 AM
ACI Learning: Interview With CEO Scott Horn About The Cybersecurity E-Learning Provider
ACI Learning is a company that trains the leaders in Audit, Cybersecurity, and Information Technology. Pulse 2.0 interviewed ACI Learning CEO Scott Horn to...
January 27, 2025 08:00 AM
CARNIVAL CORP SEC 10-K Report
The world's largest global cruise company has released its 2024 10-K report, showcasing a significant recovery in financial performance, strategic initiatives.
October 06, 2024 04:19 PM
Carnival Corporation Discloses Ransomware Attack; Personal Data of Employees and Guests Potentially Accessed
Carnival Corporation, the world”s largest cruise line operator, disclosed that one of its brands suffered a ransomware attack involving unauthorized access and...
August 07, 2024 07:00 AM
Princess Cruises Debuts New, MedallionNet Max Wi-Fi With Starlink
Princess Cruises is launching a new, higher tier of onboard Wi-Fi called MedallionNet Max for cruise customers using Starlink.
January 24, 2024 08:00 AM
Princess Cruises Announces Delayed Delivery Of Sun Princess
Princess Cruises has announced the delayed delivery of Sun Princess and its inaugural voyage set to depart on February 8th.
December 28, 2023 10:13 PM
Carnival Cruise Line Reports Security Breach
Cruise ship operator Carnival Corp. said this week it recently detected a breach of its systems and as a result, data belonging to customers and employees may...
June 20, 2023 07:00 AM
DNV in $107 million acquisition of Nixu cybersecurity specialist
In a EUR 98 million (about $107 million) deal it is to fully acquire Helsinki-headquartered cyber specialist Nixu and will combine it with its own...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Princess Cruises CyberSecurity History Information
Official Website of Princess Cruises
The official website of Princess Cruises is https://spr.ly/lin.
Princess Cruises’s AI-Generated Cybersecurity Score
According to Rankiteo, Princess Cruises’s AI-generated cybersecurity score is 776, reflecting their Fair security posture.
How many security badges does Princess Cruises’ have ?
According to Rankiteo, Princess Cruises currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Princess Cruises have SOC 2 Type 1 certification ?
According to Rankiteo, Princess Cruises is not certified under SOC 2 Type 1.
Does Princess Cruises have SOC 2 Type 2 certification ?
According to Rankiteo, Princess Cruises does not hold a SOC 2 Type 2 certification.
Does Princess Cruises comply with GDPR ?
According to Rankiteo, Princess Cruises is not listed as GDPR compliant.
Does Princess Cruises have PCI DSS certification ?
According to Rankiteo, Princess Cruises does not currently maintain PCI DSS compliance.
Does Princess Cruises comply with HIPAA ?
According to Rankiteo, Princess Cruises is not compliant with HIPAA regulations.
Does Princess Cruises have ISO 27001 certification ?
According to Rankiteo,Princess Cruises is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Princess Cruises
Princess Cruises operates primarily in the Travel Arrangements industry.
Number of Employees at Princess Cruises
Princess Cruises employs approximately 14,486 people worldwide.
Subsidiaries Owned by Princess Cruises
Princess Cruises presently has no subsidiaries across any sectors.
Princess Cruises’s LinkedIn Followers
Princess Cruises’s official LinkedIn profile has approximately 302,544 followers.
NAICS Classification of Princess Cruises
Princess Cruises is classified under the NAICS code 5615, which corresponds to Travel Arrangement and Reservation Services.
Princess Cruises’s Presence on Crunchbase
No, Princess Cruises does not have a profile on Crunchbase.
Princess Cruises’s Presence on LinkedIn
Yes, Princess Cruises maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/princess-cruises.
Cybersecurity Incidents Involving Princess Cruises
As of December 22, 2025, Rankiteo reports that Princess Cruises has experienced 10 cybersecurity incidents.
Number of Peer and Competitor Companies
Princess Cruises has an estimated 4,816 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Princess Cruises ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach and Ransomware.
How does Princess Cruises detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an containment measures with holland america line was shut down to prevent further unauthorized access., and containment measures with shutdown of operations to prevent further unauthorized access, and law enforcement notified with yes (reported to california office of the attorney general), and incident response plan activated with likely (given public communication), and communication strategy with email to passengers, website notice about communication outages..
Incident Details
Can you provide details on each incident ?
Title: Ransomware Attack on AIDA Cruises
Description: AIDA Cruises suffered a ransomware attack that disconnected all its ships from the internet, leading to IT restrictions and trip cancellations.
Type: Ransomware
Motivation: Financial
Title: Holland America Line Data Breach
Description: Holland America Line experienced a data breach in May 2019 where unauthorized third-party access to employee email accounts compromised personal information of employees and guests.
Date Detected: May 2019
Type: Data Breach
Attack Vector: Phishing
Vulnerability Exploited: Human
Title: Princess Cruises Data Breach
Description: Princess Cruises experienced a data breach in late May 2019 where unauthorized third-party access to employee email accounts compromised personal information of employees and guests.
Date Detected: 2019-05
Type: Data Breach
Attack Vector: Phishing
Vulnerability Exploited: Employee email accounts
Threat Actor: Unauthorized third-party
Title: Carnival Corporation and plc Data Breach
Description: Unauthorized access to email accounts detected on March 19, 2021, compromising personal information including names, addresses, phone numbers, passport numbers, and health information.
Date Detected: 2021-03-19
Date Publicly Disclosed: 2021-10-18
Type: Data Breach
Attack Vector: Email Account Compromise
Title: Carnival Corporation & PLC Data Breach
Description: Unauthorized access to employee email accounts potentially compromised personal information including names, addresses, Social Security numbers, and financial information.
Date Publicly Disclosed: 2020-03-03
Type: Data Breach
Attack Vector: Email Compromise
Title: Carnival Corporation and plc Data Breach (2020)
Description: The California Office of the Attorney General reported a data breach involving Carnival Corporation and plc on February 4, 2021. The breach occurred on August 15, 2020, due to unauthorized third-party access to the company's information technology systems, potentially impacting guest and employee personal information including names, addresses, passport numbers, and Social Security numbers.
Date Detected: 2020-08-15
Date Publicly Disclosed: 2021-02-04
Type: Data Breach
Attack Vector: Unauthorized third-party access
Title: Carnival Cruise Line Data Breach (2020)
Description: The California Office of the Attorney General reported a data breach involving Carnival Cruise Line on October 13, 2020. The breach occurred on August 15, 2020, involving unauthorized access to personal information of guests, employees, and crew, including names, addresses, phone numbers, and possibly Social Security numbers and health information. Specific details regarding the number of individuals affected are currently unknown.
Date Detected: 2020-08-15
Date Publicly Disclosed: 2020-10-13
Type: Data Breach
Title: AIDA Cruises Ransomware Attack (DoppelPaymer) - December 2020
Description: In December 2020, AIDA cruise ships experienced severe IT problems, leading to the cancellation of New Year's Eve cruises. The company attributed the disruptions to IT restrictions affecting phone systems and email, suspected to be caused by a ransomware attack (DoppelPaymer). Customers were unable to reach the company via phone or email, as indicated on their website.
Date Detected: 2020-12
Date Publicly Disclosed: 2020-12
Type: ransomware
Motivation: financial (ransom)
Title: Ransomware Attack on Princess Cruises & Holland America Cruise Line (Carnival Corp)
Description: In May 2019, shipping firm Princess Cruises & Holland America Cruise Line, a part of Carnival Corp., was hit by a ransomware attack in Florida, USA. Hackers gained unauthorized access to a company employee's account and encrypted a part of the company's IT systems. After compromising the account and monitoring the company's email traffic, the hacker allegedly identified potential targets.
Date Detected: 2019-05
Type: ransomware
Attack Vector: compromised employee account
Title: Carnival Corp. Data Breach and Ransomware Attack (2021)
Description: In March 2021, Carnival Corp. experienced a data breach where attackers used email to gain unauthorized access to the IT system of one of its cruise liners. The breach compromised personal information of staff and customers. The company detected the unauthorized access on March 19, 2021, with evidence suggesting a low likelihood of misuse of the stolen data. This was part of a ransomware-based attack that Carnival Corp. endured over a span of about two years.
Date Detected: 2021-03-19
Type: data breach
Attack Vector: email
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Phishing emails, Email accounts, Email Compromise, compromised employee account and email.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware AID152021222
Systems Affected: Internet connectivity of all ships
Operational Impact: Trip cancellations
Incident : Data Breach HOL2320221222
Data Compromised: Names, Social security numbers, Government identification numbers, Passport numbers, National identity card numbers, Credit card information, Financial account information, Health-related information
Systems Affected: Email accounts
Incident : Data Breach PRI2320221222
Data Compromised: Names, Social security numbers, Government identification numbers, Passport numbers, National identity card numbers, Credit card information, Financial account information, Health-related information
Systems Affected: Email accounts
Incident : Data Breach CAR754072725
Data Compromised: Names, Addresses, Phone numbers, Passport numbers, Health information
Incident : Data Breach CAR209072825
Data Compromised: Names, Addresses, Social security numbers, Financial information
Incident : Data Breach CAR1010090725
Data Compromised: Names, Addresses, Passport numbers, Social security numbers
Systems Affected: information technology systems
Identity Theft Risk: high (PII exposed)
Incident : Data Breach CAR1020090725
Data Compromised: Names, Addresses, Phone numbers, Social security numbers (possible), Health information (possible)
Identity Theft Risk: High (due to PII exposure)
Incident : ransomware AID248092125
Systems Affected: phone systemsemail systemswebsite communication
Downtime: prolonged (at least through New Year's Eve 2020)
Operational Impact: cancellation of New Year's Eve cruises (e.g., AIDAperla)
Customer Complaints: likely (due to cancelled cruises and communication outages)
Brand Reputation Impact: moderate to high (public cancellation of major holiday cruises)
Incident : ransomware CAR311092125
Systems Affected: part of the company's IT systems
Incident : data breach CAR327092125
Data Compromised: Personal information of staff and customers
Systems Affected: limited proportions of the company's information systems
Identity Theft Risk: low likelihood
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personal Information, Financial Information, Health Information, , Personal Information, Social Security Numbers, Government Identification Numbers, Passport Numbers, National Identity Card Numbers, Credit Card Information, Financial Account Information, Health-Related Information, , Names, Addresses, Phone Numbers, Passport Numbers, Health Information, , Names, Addresses, Social Security Numbers, Financial Information, , Personal Information, Pii, , Personally Identifiable Information (Pii), Potentially Protected Health Information (Phi), , Personal Information and .
Which entities were affected by each incident ?
Incident : Ransomware AID152021222
Entity Name: AIDA Cruises
Entity Type: Cruise Line
Industry: Travel and Tourism
Incident : Data Breach HOL2320221222
Entity Name: Holland America Line
Entity Type: Company
Industry: Travel and Tourism
Incident : Data Breach PRI2320221222
Entity Name: Princess Cruises
Entity Type: Company
Industry: Cruise Line
Incident : Data Breach CAR754072725
Entity Name: Carnival Corporation and plc
Entity Type: Corporation
Industry: Travel and Leisure
Incident : Data Breach CAR209072825
Entity Name: Carnival Corporation & PLC
Entity Type: Corporation
Industry: Travel and Leisure
Incident : Data Breach CAR1010090725
Entity Name: Carnival Corporation and plc
Entity Type: Corporation
Industry: Travel & Leisure (Cruise Line)
Location: Global (HQ: USA/UK)
Incident : Data Breach CAR1020090725
Entity Name: Carnival Cruise Line
Entity Type: Corporation
Industry: Travel & Hospitality
Location: United States (headquartered in Florida)
Customers Affected: Unknown (guests, employees, and crew)
Incident : ransomware AID248092125
Entity Name: AIDA Cruises
Entity Type: company
Industry: travel/hospitality (cruise line)
Location: Germany (headquarters)
Customers Affected: passengers of cancelled cruises (e.g., AIDAperla)
Incident : ransomware CAR311092125
Entity Name: Princess Cruises
Entity Type: subsidiary
Industry: shipping/cruise line
Location: Florida, USA
Incident : ransomware CAR311092125
Entity Name: Holland America Cruise Line
Entity Type: subsidiary
Industry: shipping/cruise line
Location: Florida, USA
Incident : ransomware CAR311092125
Entity Name: Carnival Corp
Entity Type: parent company
Industry: shipping/cruise line
Location: Florida, USA
Incident : data breach CAR327092125
Entity Name: Carnival Corp.
Entity Type: corporation
Industry: cruise/travel
Location: Miami, Florida, USA
Customers Affected: True
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach HOL2320221222
Containment Measures: Holland America Line was shut down to prevent further unauthorized access.
Incident : Data Breach PRI2320221222
Containment Measures: Shutdown of operations to prevent further unauthorized access
Incident : Data Breach CAR1020090725
Law Enforcement Notified: Yes (reported to California Office of the Attorney General)
Incident : ransomware AID248092125
Incident Response Plan Activated: likely (given public communication)
Communication Strategy: email to passengers, website notice about communication outages
What is the company's incident response plan?
Incident Response Plan: The company's incident response plan is described as likely (given public communication).
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach HOL2320221222
Type of Data Compromised: Personal information, Financial information, Health information
Sensitivity of Data: High
Personally Identifiable Information: Yes
Incident : Data Breach PRI2320221222
Type of Data Compromised: Personal information, Social security numbers, Government identification numbers, Passport numbers, National identity card numbers, Credit card information, Financial account information, Health-related information
Sensitivity of Data: High
Incident : Data Breach CAR754072725
Type of Data Compromised: Names, Addresses, Phone numbers, Passport numbers, Health information
Incident : Data Breach CAR209072825
Type of Data Compromised: Names, Addresses, Social security numbers, Financial information
Sensitivity of Data: High
Incident : Data Breach CAR1010090725
Type of Data Compromised: Personal information, Pii
Sensitivity of Data: high
Data Exfiltration: likely
Personally Identifiable Information: namesaddressespassport numbersSocial Security numbers
Incident : Data Breach CAR1020090725
Type of Data Compromised: Personally identifiable information (pii), Potentially protected health information (phi)
Number of Records Exposed: Unknown
Sensitivity of Data: High
Data Exfiltration: Likely (unauthorized access confirmed)
Personally Identifiable Information: namesaddressesphone numbersSocial Security numbers (possible)
Incident : ransomware AID248092125
Data Encryption: likely (ransomware)
Incident : ransomware CAR311092125
Data Encryption: True
Incident : data breach CAR327092125
Type of Data Compromised: Personal information
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by holland america line was shut down to prevent further unauthorized access. and shutdown of operations to prevent further unauthorized access.
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : Ransomware AID152021222
Ransom Demanded: True
Incident : ransomware CAR311092125
Data Encryption: True
Incident : data breach CAR327092125
Data Exfiltration: True
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Data Breach CAR1010090725
Regulations Violated: California data breach notification laws (potential),
Regulatory Notifications: California Office of the Attorney General
Incident : Data Breach CAR1020090725
Regulations Violated: Potential violation of California Consumer Privacy Act (CCPA), Potential violation of Health Insurance Portability and Accountability Act (HIPAA) if health data was exposed,
Regulatory Notifications: California Office of the Attorney General
References
Where can I find more information about each incident ?
Incident : Data Breach CAR754072725
Source: California Office of the Attorney General
Date Accessed: 2021-10-18
Incident : Data Breach CAR209072825
Source: California Office of the Attorney General
Incident : Data Breach CAR1010090725
Source: California Office of the Attorney General
Date Accessed: 2021-02-04
Incident : Data Breach CAR1020090725
Source: California Office of the Attorney General
Date Accessed: 2020-10-13
Incident : ransomware AID248092125
Source: BleepingComputer
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: California Office of the Attorney GeneralDate Accessed: 2021-10-18, and Source: California Office of the Attorney General, and Source: California Office of the Attorney GeneralDate Accessed: 2021-02-04, and Source: California Office of the Attorney GeneralDate Accessed: 2020-10-13, and Source: BleepingComputer.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Data Breach CAR1020090725
Investigation Status: Ongoing (as of disclosure date)
Incident : ransomware AID248092125
Investigation Status: suspicion of ransomware (DoppelPaymer) as of December 2020
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through email to passengers and website notice about communication outages.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : ransomware AID248092125
Customer Advisories: email to passengers, website notice
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: were email to passengers and website notice.
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Data Breach HOL2320221222
Entry Point: Phishing emails
Incident : Data Breach PRI2320221222
Entry Point: Email accounts
Incident : Data Breach CAR209072825
Entry Point: Email Compromise
Incident : ransomware CAR311092125
Entry Point: compromised employee account
Reconnaissance Period: monitored email traffic
High Value Targets: identified potential targets
Data Sold on Dark Web: identified potential targets
Incident : data breach CAR327092125
Entry Point: email
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Breach HOL2320221222
Root Causes: Deceptive emails leading to unauthorized access
Incident : Data Breach PRI2320221222
Root Causes: Phishing emails leading to unauthorized access
Additional Questions
General Information
What was the amount of the last ransom demanded ?
Last Ransom Demanded: The amount of the last ransom demanded was True.
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Unauthorized third-party.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on May 2019.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2020-12.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Names, Social Security numbers, Government identification numbers, Passport numbers, National identity card numbers, Credit card information, Financial account information, Health-related information, , Names, Social Security numbers, Government identification numbers, Passport numbers, National identity card numbers, Credit card information, Financial account information, Health-related information, , names, addresses, phone numbers, passport numbers, health information, , names, addresses, Social Security numbers, financial information, , names, addresses, passport numbers, Social Security numbers, , names, addresses, phone numbers, Social Security numbers (possible), health information (possible), , personal information of staff and customers and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was Internet connectivity of all ships and and and information technology systems and phone systemsemail systemswebsite communication and part of the company's IT systems and limited proportions of the company's information systems.
Response to the Incidents
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident were Holland America Line was shut down to prevent further unauthorized access. and Shutdown of operations to prevent further unauthorized access.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Social Security numbers (possible), addresses, Health-related information, National identity card numbers, Names, names, health information, Financial account information, phone numbers, passport numbers, Passport numbers, health information (possible), personal information of staff and customers, Government identification numbers, Credit card information, Social Security numbers and financial information.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 0.
Ransomware Information
What was the highest ransom demanded in a ransomware incident ?
Highest Ransom Demanded: The highest ransom demanded in a ransomware incident was True.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are California Office of the Attorney General and BleepingComputer.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing (as of disclosure date).
Stakeholder and Customer Advisories
What was the most recent customer advisory issued ?
Most Recent Customer Advisory: The most recent customer advisory issued were an email to passengers and website notice.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker were an email, Phishing emails, Email accounts, Email Compromise and compromised employee account.
What was the most recent reconnaissance period for an incident ?
Most Recent Reconnaissance Period: The most recent reconnaissance period for an incident was monitored email traffic.
Post-Incident Analysis
What was the most significant root cause identified in post-incident analysis ?
Most Significant Root Cause: The most significant root cause identified in post-incident analysis was Deceptive emails leading to unauthorized access, Phishing emails leading to unauthorized access.
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability has been found in SeaCMS up to 13.3. The affected element is an unknown function of the file js/player/dmplayer/dmku/class/mysqli.class.php. Such manipulation of the argument page/limit leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HappyDevs TempTool allows Stored XSS.This issue affects TempTool: from n/a through 1.3.1.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Tormorten WP Microdata allows Stored XSS.This issue affects WP Microdata: from n/a through 1.0.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
Description
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in HappyDevs TempTool allows Retrieve Embedded Sensitive Data.This issue affects TempTool: from n/a through 1.3.1.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Description
A vulnerability has been found in Tenda FH1201 1.2.0.14(408). Affected is the function sprintf of the file /goform/SetIpBind. Such manipulation of the argument page leads to stack-based buffer overflow. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.
Risk Information
cvss2
Base: 9.0
Severity: LOW
AV:N/AC:L/Au:S/C:C/I:C/A:C
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 7.4
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_FH1201/SetIpBind/SetIpBind.md
- https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_FH1201/SetIpBind/SetIpBind.md#reproduce
- https://vuldb.com/?ctiid.337689
- https://vuldb.com/?id.337689
- https://vuldb.com/?submit.719154
- https://www.tenda.com.cn/
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=princess-cruises' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
