security

Malaysia Airlines hit by 'data security incident' via third-party IT service provider – Channel Asia Singapore


Credit: Dreamstime

Malaysia Airlines has informed Enrich frequent flyer members of a “data security incident” via a third-party IT service provider, insisting the breach avoided the national carrier’s core IT infrastructure and systems.

Delivered via an email note to members on Monday 1 March, the airline advised that the incident occured at some point during a nine-year period between March 2010 and June 2019, without disclosing the number of individuals impacted.

Breached personal data includes Enrich member names, date of birth, gender and contact details, in addition to frequent flyer number, status and tier level information.

According to the statement – which has yet to be shared publicly but was first revealed by Malay Mail – the incident did not affect itineraries, reservations, ticketing, ID card or payment card information.

“Malaysia Airlines has no evidence that any personal data has been misused and the incident did not disclose any account passwords,” the statement read. “We are nevertheless encouraging Enrich members to change their account passwords as a precautionary measure. The incident did not affect Malaysia Airlines’ own IT infrastructure and systems in any way.”





READ SOURCE

Read More   YL Ventures, a specialist in Israeli cybersecurity startups, has closed its fourth fund with $120 million - TechCrunch

Leave a Reply

This website uses cookies. By continuing to use this site, you accept our use of cookies.