Hong Kong Cathay Pacific Airways attacked and revealed detailed data of 9.4 million users

by ·

Cathay Pacific, which is headquartered in Hong Kong, China, but provides services to many locations around the world, has issued a security bulletin stating that the company’s servers have been attacked and leaked data.
Cathay Pacific said it had discovered unusual activity in the company’s network since March, so emergency measures were taken to fix the vulnerability and be attacked. However, it was known that Cathay Pacific confirmed in May that user data had been leaked, and the total number of users leaked by Cathay Pacific internal investigations was 9.4 million.

Russian attacks against US groups

The leaked name includes the user’s name, date of birth, passport number, credit card number, frequent flyer program number, customer evaluation and flight records, and so on. Fortunately, no user’s account and password have been stolen. The above-leaked information is theoretically private but should not cause more attacks.

Cathay Pacific also emphasises that attackers attempt to access credit card data for some users, but these credit cards have expired and there is no CVV security code.

If Cathay Pacific Airways learns to keep a user’s CVV security code in violation of a ticketing website, it will be a big deal. Fortunately, the situation is not too dangerous.

The company also said it is currently working with the Hong Kong police to investigate the source of the attack and even contact some affected users to alert potential security issues.

Via: BBC