June 19, 2024 at 09:33AM
Amtrak notifies customers of a hacking incident involving username and password combinations obtained from other data breaches. Threat actors accessed accounts, changing email addresses and accessing personal and financial information. Amtrak urges affected individuals to reset passwords, review account statements, and consider placing fraud alerts on credit files. The company did not disclose the number of affected individuals.
From the provided meeting notes, it can be summarized that some Amtrak Guest Rewards Accounts were hacked due to credential stuffing attacks, where threat actors leveraged username and password combinations obtained from other breaches, malware infections, or phishing. Amtrak confirms that no internal systems were compromised and that they promptly took steps to secure affected accounts. Details accessed by the attackers included names, contact details, dates of birth, account numbers, partial credit card numbers, gift card information, transaction details, and trips. The company urged affected individuals to reset their account passwords, change credentials for other accounts, use multi-factor authentication, order credit reports, review account statements for fraud, and consider placing a fraud alert on their credit files. However, the exact number of affected individuals was not disclosed. SecurityWeek has sought more details, and further updates are pending.