Hong Kong-based Cathay Pacific airline recently announced that its computer systems were compromised. The data breach was detected in March and compromised the personal data of roughly 9.4 million passengers. The exact attack vector is unknown.
Cathay, who is currently investigating the incident, confirmed information such as phone numbers, dates of birth, passport numbers, and frequent flier numbers were exposed. Additionally, the airline added that 27 credit card numbers had also been acquired in the breach.
“We are very sorry for any concern this data security event may cause our passengers. We acted immediately to contain the event, commence a thorough investigation with the assistance of a leading cybersecurity firm, and to further strengthen our IT security measures,” said the airline’s chief executive, Rupert Hogg.
Cathay Pacific also added that the affected IT systems only impacted passenger information and did not affect flight operations systems or flight safety.
The airline industry has been susceptible to many high-profile data breaches over the past few months. In September, British Airways discovered that 380,000 transactions from the airline’s website and app had been stolen. Additionally, Air Canada restricted mobile app access after a potential data breach was believed to compromise customer information.
Delta Air Lines also announced that customer information was compromised after one of its online service providers had a security breach this past April.
The airline will be sending out notifications from the firstname.lastname@example.org email address to those who are affected by the breach.
Data breach victims should monitor their credit reports for any unauthorized activity and immediately contact the institution where the unauthorized activity occurred.