Credit and debit card information of ferry travelers may have been compromised for nearly one year.
The data breach was first suspected by ferry officials in July, but the data has been exposed to possible misuse as far back as September 2013. After launching an investigation, ferry leaders say the breach was closed on August 7.
According to a statement published on the ferry’s website, “Payment data systems were breached, which affected credit and debit card data stored on certain systems at the Cape May-Lewes Ferry’s terminals and vessels. We have determined that the security of card processing systems relating to food, beverage, and retail sales at the Cape May – Lewes Ferry were compromised.”
Neither on-site nor online ticket sales were affected, only cards used to purchase things like merchandise or food at the terminal or on-board the ferry are at risk, according to the ferry.
While it’s not known if any data was actually stolen, card numbers, the card holder’s name and possibly the expiration dates were all vulnerable.
Anyone who may have been affected is automatically protected by AllClear, an identity theft and data breach response company. Ferry officials say that protection will last for the next 12 months. Anyone who has been affected can call AllClear at 855-865-4457 to talk to an identity theft investigator.