{"id":235189,"date":"2026-04-24T11:35:00","date_gmt":"2026-04-24T15:35:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/04\/24\/shinyhunters-claim-they-have-cruise-giant-carnivals-booty-the-register\/"},"modified":"2026-04-24T13:30:12","modified_gmt":"2026-04-24T17:30:12","slug":"shinyhunters-claim-they-have-cruise-giant-carnivals-booty-the-register","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/04\/24\/shinyhunters-claim-they-have-cruise-giant-carnivals-booty-the-register\/","title":{"rendered":"ShinyHunters claim they have cruise giant Carnival\u2019s booty \u2022 The Register"},"content":{"rendered":"<p><a href=\"https:\/\/www.theregister.com\/2026\/04\/24\/shinyhunters_claim_cruise_giant_carnivals\/?tdu003dkeepreading\">ShinyHunters claim they have cruise giant Carnival\u2019s booty \u2022 The Register<\/a><\/p>\n<p><a href=\"https:\/\/www.theregister.com\/2026\/04\/24\/shinyhunters_claim_cruise_giant_carnivals\/?tdu003dkeepreading\">https:\/\/www.theregister.com\/2026\/04\/24\/shinyhunters_claim_cruise_giant_carnivals\/?tdu003dkeepreading<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-04-24 11:35:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.theregister.com\">www.theregister.com<\/a><\/p>\n<p>Carnival Corporation, the world&#8217;s largest cruise company, is dealing with choppy waters after Have I Been Pwned flagged what it claimed were 7.5 million unique email addresses all allegedly tied to one of its subsidiaries.\u00a0<\/p>\n<p>According to HIBP, the haul totals 8.7 million records and appears to relate to the Mariner Society loyalty program run by Holland America Line, a subsidiary of Carnival Corporation. It said the &#8220;data contained fields indicating it related to the Mariner Society loyalty program run by Holland America.&#8221; The exposed data includes names, dates of birth, genders, and membership status details \u2013 the kind of personal data attackers can easily repurpose for fraud or phishing.<\/p>\n<p>The company acknowledged a security incident, according to HIBP, but its version of events is, for now, a lot more contained. Carnival says the breach involved a phishing attack against a single user account and said it is still working to understand the scope of any unauthorized access.<\/p>\n<p>That&#8217;s not quite the story being told elsewhere. The data was published by the ever-busy ShinyHunters extortion crew, which claimed to have lifted not just customer data but &#8220;terabytes of internal corporate data&#8221; after talks with the company apparently went nowhere.<\/p>\n<p>&#8220;The company failed to reach an agreement with us despite our incredible patience,&#8221; said a post on the group&#8217;s leak site, seen by The Register, adding, &#8220;They don&#8217;t care.&#8221;<\/p>\n<p>Take the claims with the usual pinch of sea salt \u2013 ShinyHunters has form for dressing up its hits \u2013\u00a0 but the volume and apparent legitimacy of the data flagged by HIBP suggest there is potentially something more substantial here than the usual leak site bravado.<\/p>\n<p>The Register has asked Carnival to confirm whether the figures match its own findings, what data was accessed, whether any ransom demand was made, and how attackers got in. It&#8230;<\/p>\n<p><a href=\"https:\/\/www.theregister.com\/2026\/04\/24\/shinyhunters_claim_cruise_giant_carnivals\/?tdu003dkeepreading\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>ShinyHunters claim they have cruise giant Carnival\u2019s booty \u2022 The Register https:\/\/www.theregister.com\/2026\/04\/24\/shinyhunters_claim_cruise_giant_carnivals\/?tdu003dkeepreading Publish Date: 2026-04-24&#8230;<\/p>\n","protected":false},"author":1,"featured_media":235190,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/regmedia.co.uk\/2026\/04\/24\/shutterstock_1119576998.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[30,25],"class_list":["post-235189","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-breach","tag-phishing"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/235189"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=235189"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/235189\/revisions"}],"predecessor-version":[{"id":235191,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/235189\/revisions\/235191"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/235190"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=235189"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=235189"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=235189"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}