Audio Sources - Full Text Articles

Airline company Air France-KLM discloses security breach

Airline company Air France-KLM is notifying the customers of its loyalty program Flying Blue of a data breach.

Airline company Air France-KLM announced it has suffered a data breach, data belonging to customers of its loyalty program Flying Blue were exposed.

The Flying Blue loyalty program is used by other airlines, including Aircalin, Kenya Airways, TAROM, and Transavia. The company did not provide details about the security breach, it is not clear if threat actors had access to its infrastructure.

Air France-KLM

The company notified impacted customers of suspicious activity related to their accounts, and the notice sent to the customers informed them that some of their personal information might have been exposed.

Compromised data include names, email addresses, Flying Blue numbers and level, miles balance, phone numbers, and latest transactions. Air France-KLM pointed out that no financial information was exposed.

“Our security operations teams have detected suspicious behavior by an unauthorized entity in relation to your account. We have immediately implemented corrective action to prevent further exposure of your data,” reads the notification sent to customers.

Potentially a breach at @KLM @flyingblue. Are there more people who received this? @troyhunt #klm #flyingblue

— Jeroen Burgerhout ☁ | MCT 👨‍🏫 (@BurgerhoutJ) January 6, 2023

The airline locked customers’ accounts and required customers to reset their passwords in order to regain access.

I’ve checked this for you and rest assured that the attack was blocked in time and no miles were charged. I do however invite you to change your Flying Blue-password via the Flying Blue-website.

— KLM (@KLM) January 6, 2023

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, Air France-KLM)

The post Airline company Air France-KLM discloses security breach appeared first on Security Affairs.