Jump to content
Cruise Critic Community

Data Protection Issue

davyjones

By davyjones,
in Cunard Line

Recommended Posts

bluemarble

bluemarble

Posted
Posted

It has been well over 48 hours now since I received the e-mail notification from Cunard that they will be issuing us a new booking confirmation with 48 hours. I have heard nothing further from Cunard except for an e-mail advertisement informing me of "Expert Speakers Aboard Queen Mary 2".

 

As others have reported, our original booking reference number is still active in the Voyage Personaliser.

 

I spoke with a Cunard customer service representative who told me the e-mail notification about issuing new booking confirmations was sent to more people than were actually impacted by the incident. We will be keeping our original booking reference number after all.

 

We are booked on the Nov. 17 QE voyage.

 

Regards,

John.

Link to comment
Share on other sites
Salacia

Salacia

Posted
Posted
Nothing like 1200+ but before our Oct TA we got a notification email about some trivial thing and it included the names and booking numbers of two other sets of passengers. I ignored it, but I guess I could have signed the others up for shore excursions or something.

 

This has me wondering how many times names and booking numbers have been inadvertently released to other passengers (hopefully only sent to honest passengers like Underwatr!). The most recent incident is a large scale security breach, but what is the likelyhood that there has been more than one small scale breach?

 

Has anyone else received e-mails from Cunard with information about other passengers? (I haven't.)

 

Regards,

Salacia

WC Platinum

Link to comment
Share on other sites
MawganTr

MawganTr

Posted
Posted

We have not had an email from Cunard about our info being compromised so I guess (& hope!) that our details are safe!

Twitter is showing that sky news are reporting that 'cruise company Cunard closes online booking system after data breach' A few days behind but reporting it nevertheless!!

 

 

Sent from my iPad using Tapatalk HD

Link to comment
Share on other sites
Salacia

Salacia

Posted
Posted
We have not had an email from Cunard about our info being compromised so I guess (& hope!) that our details are safe!

Twitter is showing that sky news are reporting that 'cruise company Cunard closes online booking system after data breach' A few days behind but reporting it nevertheless!!

 

 

Sent from my iPad using Tapatalk HD

 

There's a brief video of an interview with Peter Shanks regarding this issue at http://news.sky.com/ (scroll down to the Video Timeline and click on 9:01pm "Cunard Exec Admits Security Breach")

Link to comment
Share on other sites
Salacia

Salacia

Posted
Posted
There's a brief video of an interview with Peter Shanks regarding this issue at http://news.sky.com/ (scroll down to the Video Timeline and click on 9:01pm "Cunard Exec Admits Security Breach")

 

(oops, sorry, the time changes - but the title of the clip remains constant) BTW, does it seem to anyone else that Mr. Shanks has a rather different account of what data was released?

Link to comment
Share on other sites
3rdGenCunarder "Live from...." Rare

3rdGenCunarder

Posted
Posted
There's a brief video of an interview with Peter Shanks regarding this issue at http://news.sky.com/ (scroll down to the Video Timeline and click on 9:01pm "Cunard Exec Admits Security Breach")

 

Liar, Liar, pants on fire!!!!!!!!!!!!!!

 

Not you, Salacia, I mean Peter Shanks.

 

He said it was just email addresses of passengers. But it's more than that. It's names and booking numbers.

 

He said that they have SPOKEN with every one of the affected passengers. And he said that they have completed rebooking everyone. Really??? Does bluemarble have a new booking number yet? Why is Darrencantwait's confirmation form blank?

 

Cunard have spoken to me, but that's because I called them (twice) Has everyone else involved been contacted by more than email???

Link to comment
Share on other sites
Salacia

Salacia

Posted
Posted
Liar, Liar, pants on fire!!!!!!!!!!!!!!

 

Not you, Salacia, I mean Peter Shanks.

 

He said it was just email addresses of passengers. But it's more than that. It's names and booking numbers.

 

He said that they have SPOKEN with every one of the affected passengers. And he said that they have completed rebooking everyone. Really??? Does bluemarble have a new booking number yet? Why is Darrencantwait's confirmation form blank?

 

Cunard have spoken to me, but that's because I called them (twice) Has everyone else involved been contacted by more than email???

'

3rdGenCunarder, that was my reaction too when I heard Mr. Shanks' version of events. I guess his name and booking number weren't amongst those that were released!

 

BTW, for anyone who wants to see the short interview, this link might work better than the one I posted previously http://news.sky.com/story/947980/the-latest-news-from-jeff-randall-live

Link to comment
Share on other sites
bluemarble

bluemarble

Posted
Posted
'

3rdGenCunarder, that was my reaction too when I heard Mr. Shanks' version of events. I guess his name and booking number weren't amongst those that were released!

 

BTW, for anyone who wants to see the short interview, this link might work better than the one I posted previously http://news.sky.com/story/947980/the-latest-news-from-jeff-randall-live

 

Thanks, Salacia.

 

I too find it a bit disingenuous for Mr. Shanks to state the e-mail in question "didn’t contain any personal details". A file containing booking reference numbers, names and e-mail addresses sounds like it contains personal details to me.

 

3GC, I have not received a new booking number yet, but when I called Cunard, I was told we were not impacted by the issue and will not be receiving a new booking number. Apparently we should not have received the e-mail notification about needing to be assigned a new booking number in the first place. I would have appreciated a follow-up message from Cunard rather than wondering about it for a couple of days and then having to call Cunard customer service for an explanation. But in the end I am satisfied that our particular situation has been resolved.

 

Regards,

John.

Link to comment
Share on other sites
tangoll

tangoll

Posted
Posted
I've just sent the following email to Cunard World Club; don't know what good it will do, though:

 

"Dear Cunard World Club

 

24 hours ago I received Cunard's "Emergency Notice" that a new confirmation number would be issued within the next 48 hours. But just now, I was able to log in to "Voyage Personaliser" using my old confirmation number. One would think that upon issuing the EN that all the old confirmation numbers would be disabled immediately, but not so. I don't know if my data were amongst those erroneously distributed."

 

Within 24 hours, I got a reply from CWC asking for my old booking number, which I sent along with the actual Emergency notice; then I got within minutes this follow-on reply from Cunard:

 

"Thank you for your email. Your email has been assigned to one of our

Customer Service Specialists for review and response. We appreciate your

patience while awaiting our reply which you will receive in approximately

2-4 weeks.

 

Thanks and Regards

 

Cunard Guest Relations

06/26/2012 15:48:35"

 

Oh, well….

Link to comment
Share on other sites
Salacia

Salacia

Posted
Posted
Thanks, Salacia.

 

I too find it a bit disingenuous for Mr. Shanks to state the e-mail in question "didn’t contain any personal details". A file containing booking reference numbers, names and e-mail addresses sounds like it contains personal details to me.

 

3GC, I have not received a new booking number yet, but when I called Cunard, I was told we were not impacted by the issue and will not be receiving a new booking number. Apparently we should not have received the e-mail notification about needing to be assigned a new booking number in the first place. I would have appreciated a follow-up message from Cunard rather than wondering about it for a couple of days and then having to call Cunard customer service for an explanation. But in the end I am satisfied that our particular situation has been resolved.

 

Regards,

John.

 

You're welcome, Blue Marble, and I'm happy that your situation has been resolved. If I understand correctly, some passengers were notified that they would receive new booking numbers, but were later informed they would not be given new booking numbers because their data wasn't compromised. But Mr Shanks said no data was compromised, other than some passengers e-mail accounts on more or less 1,200 bookings. Mr Shanks' statement doesn't pass muster, based on what I've read.

 

While I have no current bookings with Cunard, I have sailed often enough in the past few years on QM2 to reach Platinum stauts. If there was a security breach on any data I supplied to Voyage Personalizer on past voyages, I want to know about it. But I won't be relying on Mr. Shanks for that information. The only way I learn about what goes on, is by posts from fellow passengers - and I thank all of you.

 

Regards,

Salacia

Link to comment
Share on other sites
Scrapnana "Live from...." Rare

Scrapnana

Posted
Posted
There's a brief video of an interview with Peter Shanks regarding this issue at http://news.sky.com/ (scroll down to the Video Timeline and click on 9:01pm "Cunard Exec Admits Security Breach")

 

I must really be getting old. Once upon a time "spoken to" meant an oral conversation not an e-mail! From what I have read the only oral conversations were initiated by the customer not Cunard.

Link to comment
Share on other sites
Salacia

Salacia

Posted
Posted
I must really be getting old. Once upon a time "spoken to" meant an oral conversation not an e-mail! From what I have read the only oral conversations were initiated by the customer not Cunard.

 

 

Perhaps Cunard employs Clarie Voyant as a customer service rep? No need for phone calls or e-mails...all communications go through the ether...oh wait, there might be an in-coming message now :cool:...no, false alarm just another email from cunard.

Link to comment
Share on other sites
3rdGenCunarder "Live from...." Rare

3rdGenCunarder

Posted
Posted
You're welcome, Blue Marble, and I'm happy that your situation has been resolved. If I understand correctly, some passengers were notified that they would receive new booking numbers, but were later informed they would not be given new booking numbers because their data wasn't compromised. But Mr Shanks said no data was compromised, other than some passengers e-mail accounts on more or less 1,200 bookings. Mr Shanks' statement doesn't pass muster, based on what I've read.

 

While I have no current bookings with Cunard, I have sailed often enough in the past few years on QM2 to reach Platinum stauts. If there was a security breach on any data I supplied to Voyage Personalizer on past voyages, I want to know about it. But I won't be relying on Mr. Shanks for that information. The only way I learn about what goes on, is by posts from fellow passengers - and I thank all of you.

 

Regards,

Salacia

 

I made a point of telling the reservationist and the supervisor who called me back (see, Cunard DID call me!! :D) that I was not happy with how Cunard handled this. I also told them that I learned more from CC and a person who emailed me because he got the list than I did from Cunard. The supervisor said the first she knew of it was when a customer called her.

 

I believe that the list was names, email addresses, and booking numbers. Since you don't have an active booking number, there's no way to access any data that might be in Cunard's system somewhere.

Link to comment
Share on other sites
Salacia

Salacia

Posted
Posted
I made a point of telling the reservationist and the supervisor who called me back (see, Cunard DID call me!! :D) that I was not happy with how Cunard handled this. I also told them that I learned more from CC and a person who emailed me because he got the list than I did from Cunard. The supervisor said the first she knew of it was when a customer called her.

 

I believe that the list was names, email addresses, and booking numbers. Since you don't have an active booking number, there's no way to access any data that might be in Cunard's system somewhere.

 

Hi3rdGenCunarder. Thanks for the info. I understand about the latest security breach, but from I read on this thread, it is not the first time passengers names and booking numbers have beein included in an e-mail attachment; that is why I asked about previous security breaches. It might have been small scale at least once in the past, but if it could happen to one of us, it could happen to any of us.

 

BTW, this might be of interest http://www.infosecurity-magazine.com/view/26628/cunard-leaks-personal-details-of-1000-passengers/

 

Also http://www.infosecurity-magazine.com/view/26552/gop-senators-introduce-national-data-breach-notification-bill/

 

Regards & thanks again,

Salacia

Link to comment
Share on other sites
Underwatr

Underwatr

Posted
Posted

I wish now that I had kept my email...

 

Name, email and booking number sounds about right. I remember that one or both of the other two had honorifics like "Dr." which made me feel like I was in good company. :)

Link to comment
Share on other sites
3rdGenCunarder "Live from...." Rare

3rdGenCunarder

Posted
Posted
I wish now that I had kept my email...

 

Name, email and booking number sounds about right. I remember that one or both of the other two had honorifics like "Dr." which made me feel like I was in good company. :)

 

The supervisor I spoke to said that Cunard should start requiring more than a name and booking number. She said that Princess asks for birth date as additional identification. I think HAL requires that you set up a password.

Link to comment
Share on other sites
Salacia

Salacia

Posted
Posted
I wish now that I had kept my email...

 

Name, email and booking number sounds about right. I remember that one or both of the other two had honorifics like "Dr." which made me feel like I was in good company. :)

 

 

Underwatr...and little did they know what good company they'd be with you as a ship mate. Cheers -S.

Link to comment
Share on other sites
Aubreysshipmate

Aubreysshipmate

Posted
Posted

In regards to this having happened before? Yes, several months prior to the 2012 Australian Circumnavigation voyage I had a list of 60 or so names and details sent to me. Later a "please disregard previous email" followed thereafter by a re-booking email.

 

I still possess those emails and hard copies too...

 

I hope you all get everything sorted but keep in mind this system is far from secure

Link to comment
Share on other sites
BlueRiband

BlueRiband

Posted
Posted

No system is 100% foolproof from stupidity or just plain inattention.

 

I work for a pharmaceutical company in the US. When an application for a new drug was being considered by the regulatory authorities here I got an email that had been forwarded through a chain of people. At the very bottom was the date for the agency's decision to announce approval or rejection of the drug! Only a handful of people were supposed to know that. It was material insider information that would affect trading of the company stock.

Link to comment
Share on other sites
SANQNAT

SANQNAT

Posted
Posted

Do not assume that because you did not get an email from Cunard with a new booking reference that everything is ok with your booking.

 

 

When I tried to enter the voyage personalizer using my original booking reference I got a message saying “the booking could not be viewed online”. I gave it a few days and when I tried again this morning (28th) and was still getting the same message I contacted our TA who called Cunard and was told that the booking reference had been changed.

 

 

The new booking reference number works and I am now able to view booking details which I have checked against the original printout and everything seems ok.

 

 

As a procedural auditor I am somewhat concerned that the details in ones personalizer is not protected for example by a password such as date of birth input by clients and not allocated by Cunard. This is required by Princess

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing
  • Forum Jump
    • Categories
      • Welcome to Cruise Critic
      • New Cruisers
      • Cruise Lines “A – O”
      • Cruise Lines “P – Z”
      • River Cruising
      • ROLL CALLS
      • Cruise Critic News & Features
      • Digital Photography & Cruise Technology
      • Special Interest Cruising
      • Cruise Discussion Topics
      • UK Cruising
      • Australia & New Zealand Cruisers
      • Canadian Cruisers
      • North American Homeports
      • Ports of Call
      • Cruise Conversations
×
×
  • Create New...