Orbitz says old website may have been hacked, possibly exposing personal information

Posted at 11:40 AM, Mar 20, 2018
and last updated 2018-03-21 04:26:10-04

Orbitz says a legacy travel booking platform may have been hacked, potentially exposing the personal information of people that made purchases between Jan. 1, 2016 and Dec. 22, 2017.

The company said Tuesday about 880,000 payment cards were impacted.

Equifax finds additional 2.4 million Americans impacted by 2017 breach

Orbitz said data that was likely exposed includes name, payment card information, date of birth, phone number, email address, physical and/or billing address and gender. The company said evidence suggests an attacker may have accessed information stored on this consumer and business partner platform between Oct. 1, 2017 and Dec. 22, 2017.

The current website was not involved in the incident. It's now owned by Expedia Inc. of Belleview, Washington.

Orbitz is offering those impacted a year of free credit monitoring and identity protection service in countries where available.

To check if you're a victim, visit