Carnival breach may put your travel data at risk

Carnival Corporation has confirmed a data breach affecting nearly 6 million people, and the fallout could reach travelers who may not think of themselves as Carnival customers.

The company says the incident involved a social engineering attack on a single user account. In other words, someone fooled an employee and gained access to part of Carnival's IT system.

For cruise customers, the real concern starts after the breach. Stolen personal details can help scammers write messages that feel far more believable.