ACTA investigating cybersecurity breach, urges members to monitor for suspicious activity

The Association of Canadian Travel Agencies and Travel Advisors (ACTA) is dealing with a cybersecurity incident that may have led to unauthorized access to internal data by a third party.

According to a letter that was sent to ACTA members on Tuesday (July 29), the trade association that represents Canada’s retail travel sector first learned about the security breach, which resulted in unauthorized access to its email system, on April 21, 2025.

“We acted swiftly, engaging IT and forensic experts to investigate and contain the issue,” ACTA writes in its memo.  

While some personal data may have been “potentially accessed,” the association notes that it is confident that “no financial or payment information was involved.”

READ MORE: “Containment is complete”: WestJet posts update on cybersecurity incident

The information potentially accessed is limited to data contained in ACTA member profiles as of April 21, 2025, the association writes.

ACTA members can review the information currently on their profile by logging into their account. Once logged in, select your ACTA membership to identify what information may have been contained in ACTA’s system.

“At this time, there is no evidence that your information has been misused,” ACTA notes.

However, as a precaution, the association is encouraging members to follow standard identity protection practices, such as monitoring accounts for unusual activity, updating account passwords, and being cautious when sharing personal information.

Cyberattacks in travel

It’s the latest in a string of cyberattacks that have targeted the travel industry in recent months – primarily within the airline industry.

Both Hawaiian Airlines and WestJet have reported cyberattacks, attributed to a cybercriminal group that infiltrated their computer systems and caused operational disruptions. 

American Airlines, too, experienced a tech-related issue in June — although it’s unclear if it was related or caused by a cybersecurity breach.

These incidents haven’t compromised flight safety, but they have put top cybersecurity leaders at airlines on high alert.

READ MORE: Cybercriminal group “Scattered Spider” targeting airlines, warns FBI

While the breach at ACTA reflects a broader and concerning trend affecting the travel industry, there is no evidence at this time linking it to the higher-profile attacks that have impacted airlines in recent months.

If anything, ACTA’s alert serves as a timely reminder for travel advisors to stay vigilant against phishing attempts and other cyber threats.

It is crucial for travel professionals to regularly update passwords, verify the legitimacy of emails and attachments, and stay informed about best practices in cybersecurity to help protect both their clients and business operations.

“We take the security of your data extremely seriously,” ACTA wrote in its letter.

Safeguards activated

In response to the incident, ACTA says it has implemented “additional safeguards” to further protect member information. It has also notified the appropriate authorities.

Those with questions or concerns are advised to contact Avery Campbell, ACTA’s privacy officer, at acampbell@acta.ca or memberservices@acta.ca.

Members may also write ACTA at Association of Canadian Travel Agencies and Travel Advisors PO Box 12612, Martinway Plaza Etobicoke, ON M9R 4C7

“We sincerely apologize for any inconvenience this may have caused,” ACTA says. “We value the trust you place in us and remain committed to supporting and advocating for Canada’s retail travel and tourism industry.”

Don't miss a single travel story: subscribe to PAX today!  Click here to follow PAX on Facebook.