Travel website Orbitz announced Tuesday it has detected a security breach that may have affected consumers’ personal information shared between Jan. 1, 2016, and Dec. 22, 2017. The company said an incident likely took place between Oct. 1, 2017, and Dec. 22, 2017, on a legacy Orbitz booking platform. An attacker may have accessed users’ full name, payment card information, birthdate, phone number, email address, physical address and gender, although the company does not have “direct evidence” that such personal information was actually taken. Social Security numbers were not affected, the company says, as it does not collect or store them. The current website is not involved in the breach, Orbitz, an Expedia subsidiary, assured customers.

Source: Huffington Post March 20, 2018 15:56 UTC