Amtrak suffers a significant databreach that was revealed during a notified its customers involving its Amtrak Guest Rewards accounts that raised concerns over the theft of PII.
In a breach-disclosure notice filed with the state of Massachusetts, Amtrak stated that the breach was occurred between May 15, 2024, and May 18, 2024, allowed unauthorized parties to access users’ accounts, and it believes the threat actors obtained login credentials from third-party sources rather than Amtrak’s systems.
During the breach, the unauthorized actor changed the affected accounts’ email addresses and accessed sensitive information.
Upon discovering the breach on May 15, 2024, Amtrak promptly initiated an investigation and took steps to secure the compromised accounts.
Amtrak reverted the email addresses to the original users and reset the account passwords.it also enabled multifactor authentication (MFA) for all Amtrak Guest Rewards accounts to enhance security. Users must now enter a validation code via email or text to complete their login process.
Amtrak has advised affected customers to change their login credentials, not only for their Amtrak accounts but also for any other online accounts that may use similar usernames and passwords.
This isn’t the first time Amtrak encounters the databreach. Back in 2020 , it has discovered a breach on the Guest Rewards.
