Colin Mc Hugo

0 %
Colin Mc Hugo
Security Engineer Manager & CEO at Quantum Infinite Solutions Group Ltd.

Air India Hack Exposes Credit Card and Passport Info of 4.5 Million Passengers

May 22, 2021
air india data breach

India’s flag provider airline, Air India, has disclosed a knowledge breach affecting 4.5 million of its clients over a interval stretching almost 10 years after its Passenger Service System (PSS) supplier SITA fell sufferer to a cyber assault earlier this 12 months.

The breach entails private information registered between Aug. 26, 2011 and Feb. 3, 2021, together with particulars equivalent to names, dates of delivery, contact info, passport info, ticket info, Star Alliance, and Air India frequent flyer information in addition to bank card information. However Air India mentioned neither CVV/CVC numbers related to the bank cards nor passwords had been affected.

password auditor

The airline had beforehand acknowledged the breach on March 19, stating that “its Passenger Service System supplier has knowledgeable a few refined cyber assault it was subjected to within the final week of February 2021.”

In March, Swiss aviation info know-how firm SITA disclosed it suffered a “extremely refined assault” on its servers situated in Atlanta, resulting in a compromise of passenger information saved in its PSS system. SITA PSS is utilized by many carriers for processing airline passenger information as a part of their frequent flyer applications.

With the most recent improvement, Air India joins a long list of airlines, equivalent to Lufthansa, Cathay Pacific, Air New Zealand, Singapore Airlines, Scandinavian Airways (SAS), Finnair, Malaysia Airways, South Korea’s Jeju Air, American Airways, and United Airways which were impacted by the info safety incident.

As a part of its investigation into the occasion, Air India mentioned it engaged exterior specialists and that it notified bank card issuers of the problem, apart from resetting passwords of its frequent flyer program. The airline can also be urging customers to alter passwords wherever relevant to thwart potential unauthorized makes an attempt and make sure the security of their private information.

Posted in SecurityTags:
Write a comment