Amtrak Data Breach Exposes Some Customers Information

Amtrak has revealed a data breach that has affected customers data. certain Amtrak Guest Rewards accounts. The breach happened on the evening of April 16, 2020. Amtrak determined that an unknown third party gained unauthorized access to certain Amtrak Guest Rewards accounts.

The company says hackers used compromised usernames and passwords to access certain accounts. Some personal information may have been viewed. Amtrak’s IT security team terminated the unauthorized access “within a few hours”. No financial data, credit card information or Social Security numbers were compromised, based on the letter that will be sent out to affected customers.

Users that receive a notice that their Amtrak Guest Rewards account was potentially breached, will also note that their accounts will have an active, forced password reset. Amtrak says there is no evidence, at present, that customer information has been exploited, such as through sales or identity fraud, ZD Net reports.

It’s unclear how the attacker got hold of Amtrak Guest Reward usernames and passwords in the first place.

Affected Customers

To help protect your identity, Amtrak is offering a complimentary one-year membership of Experian’s® IdentityWorksSM at no charge. This product provides you with superior identity detection and resolution of identity theft. To activate your membership and start monitoring your personal information please follow the steps below:

• Ensure that you enroll by: 8/31/2020 (Your code will not work after this date.)
• Visit the Experian IdentityWorks website to enroll: http://www.experianidworks.com/credit
• Provide your activation code: (unique code will be provided)