CARNIVAL Corporation has disclosed a data breach affecting approximately 6 million customers, specifically 5,995,277 individuals, after hackers employed social engineering to gain access to an employee's account. The breach, identified on April 14, 2026, allowed unauthorized access to personal information, including names, addresses, emails, phone numbers, dates of birth, and government IDs. Carnival is notifying affected individuals and offering two years of free credit monitoring.
The company has stated that it has improved its security measures and continues to enhance data protection following this incident. This marks another data breach for Carnival, following incidents in March 2021, August 2020, and May 2019.