Carnival Cruise data breach affects nearly 6 million, including Canadians
An employee account compromised on April 14 exposed personal data at Carnival Corporation. Affected passengers' information may include names, addresses, government IDs, and passport numbers.
The day's top stories, food & events — every morning at 7. Unsubscribe anytime.
Nearly 6 million people, including Canadians, had personal information illegally accessed in a Carnival Cruise Line data breach, the company announced May 27.
Carnival Corporation's IT security team identified unauthorized activity on April 14 after an employee's account was compromised through social engineering. The breach exposed a limited portion of the company's IT system. Names, addresses, email addresses, phone numbers, dates of birth, and government-issued identification numbers — including driver's licence and passport numbers — may have been accessed, though the scope varies among affected individuals.
The company immediately blocked the unauthorized activity and began working with security experts to investigate and improve defences. Daily Hive contacted Carnival to determine how many Canadians were affected, but the company did not disclose that information.
"We're notifying affected individuals and deeply regret any concern this causes," a Carnival Corporation spokesperson said. The company is emailing affected guests and offering U.S. customers free credit monitoring.
Canadian cruise travel has grown steadily. According to Cruise Lines International Association, 1.18 million Canadians cruised in 2024, rising 7.6 percent to 1.27 million in 2025.