Cathay Pacific Airways was fined 500,000 pounds for failing to protect the personal data of its customers. Recently, the Information Commissioner’s Office (ICO) stated that between October 2014 and May 2018, Cathay Pacific’s computer system caused the company to expose personal details of customers due to a lack of appropriate security measures.
According to statistics, 111,578 UK resident’s info was leaked. In addition, 9.4 million passengers worldwide were leaked. The ICO said that the leaked information included customers’ names, passports and IDs, dates of birth, postal and email addresses, phone numbers and historical travel records.
At the same time, according to a data protection agency investigation, it was found that the airline had “a catalogue of errors” in its approach to network security issues, which caused the system to have had network security vulnerabilities since October 2014, and the vulnerabilities were not discovered until May 2018.