Hackers could have credit card numbers of 880,000 Orbitz users

Hackers may have gained access to as many as 880,000 credit cards by hacking into the Orbitz website. On Tuesday, March 20, the Expedia-owned travel-booking company shared that it had found evidence of a hacker gaining access to user data. The company doesn’t have evidence that the information was actually taken, but the access means user data could have been stolen.

The hack could include data from travelers that used the platform between January 1 and June 22, 2016. Partner programs using Orbitz have a much wider date range for vulerability, extending to Dec. 22, 2017. Orbitz said that, along with billing information, the hack also could have exposed other personal data including names, emails, phone numbers, billing addresses, and gender. The company’s investigation also suggests that travel itineraries, passport information, and social security numbers were not part of the hack.

The hacker gained access to an older version of the website, according to the company. The current booking platform is not part of that breach, Orbitz said.

Orbitz discovered the hack earlier in March and since has launched an investigation to determine what data could have been affected. After discovering the vulnerability, the company said it hired a forensic investigative firm and also involved law enforcement.

In a statement, Orbitz said, “We deeply regret the incident, and we are committed to doing everything we can to maintain the trust of our customers and partners.”

Willy Leichtera, a cybersecurity expert with Virsec Systems, lauded the company for the promptness of its disclosure, but noted that access to the “older” site is just as troubling.

“First, it’s important to point out the Orbitz announced this breach relatively quickly – within 3 weeks. That may not sound fast, but compared to Equifax (6+ months) and Uber (never, until they got caught), Orbitz did the right thing.”

“What’s more unsettling is the idea that sensitive data for close to a million customers was available in a ‘legacy website.’ That makes it sound like it’s OK to neglect security on older systems while you focus on your latest, coolest apps. If it’s a public-facing website with real data, it’s not legacy – it’s live, and a real liability.”

For those 880,000 users that could have compromised data, the company is offering a year of credit and identity monitoring at no charge. Orbitz says it is notifying users that could have been affected by the breach, but travelers that booked within those dates can also call 855-828-3959 in the U.S. or 512-201-2214 outside the U.S. for additional information.

The breach isn’t the first time hackers have targeted travel platforms. Sabre announced a hack last year on the hotel booking platform. In 2011, a TripAdvisor hack compromised user emails, but the booking platform didn’t collect payment information from users.

Orbitz is owned by Expedia Inc. and offers online booking for flights, accommodations, and rental cars, as well as options like cruises and complete travel packages.

Product Review

Digital Storm’s Lynx PC appeals to gamers with stylish, upgradeable design

Digital Storm’s Lynx provides an excellent alternative to gamers who don’t want to build their own gaming PCs. Equipped with powerful hardware and space for two graphics cards, the Lynx is a PC that’s capable of growing with your…

After fourth attack, hacker puts personal records of 26M people up for sale

A serial hacker going by the name of Gnosticplayers is selling the personal data of 26 million people who have been using the services of six different companies from across the world.

FCC to help first responders pinpoint 911 callers in multistory buildings

When someone calls 911 from their cell phone, wireless carriers provide operators with an approximate location. Now the FCC wants the carriers to provide vertical location data to pinpoint 911 callers inside multi-story buildings.
Social Media

Federal investigation digs into Facebook’s data-sharing deals

Facebook confirmed it is cooperating with a federal criminal investigation. According to a report, the company is under investigation for sharing user data with smartphone and tablet companies.

Edit, sign, append, and save with six of the best PDF editors

Though there are plenty of PDF editors to be had online, finding a solution with the tools you need can be tough. Here are the best PDF editors for your editing needs, no matter your budget or operating system.

Old Nvidia graphics cards to get ray tracing support in upcoming driver

Nvidia's RTX ray tracing technology will no longer be limited to RTX graphics cards. An upcoming driver update will add support for low-end ray tracing to GTX 10-series and 16-series graphics cards.

Apple iMac gets more powerful with new Intel CPUs, Radeon Pro graphics

Apple on Tuesday, March 19 refreshed its iMac lineup with new models featuring slightly more powerful Intel processors and new AMD graphics cards. The new 27-inch 5K model comes with options for Intel's six-core or eight-core ninth-gen…

Nvidia’s new simulator brings virtual learning to autonomous vehicle developers

Nvidia introduced a simulator for testing autonomous vehicle technologies. Drive Constellation is a cloud-based platform technology vendors can use to validate systems efficiently, safely, and much faster than with vehicles on real roads.

Paper designs digitize in real time using an Illustrator-connected paper tablet

Love graphic design, but prefer the feel of real paper? The new Moleskine Paper Tablet - Creative Cloud Connected syncs with Adobe Illustrator in real time, turning paper sketches into digital drawings.

Make the most of your toner with our five favorite color laser printers

Color laser printers have improved dramatically over the years, and today's models offer both blazing print speeds and great image quality. Here are our favorite color laser printers, from massive all-in-ones to smaller budget options.

Firefox 66 is here and it will soon block irritating autoplay videos

Do web advertisements have you frustrated? Mozilla is here to help. The latest version of the browser will soon block autoplaying videos by default and will also help make web page scrolling smoother.

USB4 will be the fastest and most uniform USB standard yet

USB4 is on the horizon and alongside a massive boost in speed it's also unifying with the Thunderbolt 3 standard to help finally create a singular wired connection protocol that all devices can enjoy.

The U.S. government plans to drop $500M on a ridiculously powerful supercomputer

The U.S. Department of Energy has announced plans to build a $500 million exascale supercomputer by 2021. The project, known as the Aurora supercomputer, is expected to boost research efforts in fields such as public health.
Buying Guides

Apple has powered up its iMac lineup, but which one should you opt for?

With new processors and graphics cards for both the 4K and 5K models, the iMac feels like a good option for creatives again. But which should you buy? Here's our guide to choosing the right Apple all-in-one for your needs.