Airline company Air France-KLM is notifying the customers of its loyalty program Flying Blue of a data breach.
Airline company Air France-KLM announced it has suffered a data breach, data belonging to customers of its loyalty program Flying Blue were exposed.
The Flying Blue loyalty program is used by other airlines, including Aircalin, Kenya Airways, TAROM, and Transavia. The company did not provide details about the security breach, it is not clear if threat actors had access to its infrastructure.
The company notified impacted customers of suspicious activity related to their accounts, and the notice sent to the customers informed them that some of their personal information might have been exposed.
Compromised data include names, email addresses, Flying Blue numbers and level, miles balance, phone numbers, and latest transactions. Air France-KLM pointed out that no financial information was exposed.
“Our security operations teams have detected suspicious behavior by an unauthorized entity in relation to your account. We have immediately implemented corrective action to prevent further exposure of your data,” reads the notification sent to customers.
— Jeroen Burgerhout | MCT (@BurgerhoutJ) January 6, 2023
The airline locked customers’ accounts and required customers to reset their passwords in order to regain access.
I’ve checked this for you and rest assured that the attack was blocked in time and no miles were charged. I do however invite you to change your Flying Blue-password via the Flying Blue-website.
— KLM (@KLM) January 6, 2023
(SecurityAffairs – hacking, Air France-KLM)
The post Airline company Air France-KLM discloses security breach appeared first on Security Affairs.