Tuesday, February 27, 2024

Cathay Pacific Hacked – More Than 9.4 Million Passengers Affected

Cathay Pacific limited suffered a major data breach that affected more than 9.4 million passengers personal data.

According to Cathay Pacific, the following data are details accessed by hackers such as passenger name, nationality, date of birth, phone number, email, address, passport number, identity card number, frequent flyer programme membership number, customer service remarks, and historical travel information.

Cathay Pacific detected the suspicious activity on their network in March this year and the Unauthorised access was confirmed in early May.

Cathay Pacific – Financial Data

The company confirms that attackers accessed 403 expired credit card numbers and 27 credit card numbers with no CVV were accessed. No-one’s travel or loyalty profile was accessed in full, and no passwords were compromised.

“We have no evidence that any personal information has been misused. However, in an abundance of caution, we have taken the decision to notify everyone we believe may have been affected.” reads breach report.

Also, the company confirms there is no evidence of data misuse still date, but these exposed data can be used by attackers to launch targeted attacks.

Cathay Pacific Airways Limited is the flag carrier of Hong Kong, it’s a biggest international carrier and the main hub located at Hong Kong International Airport.

British Airways disclosed security breach last September, attackers stole personal and financial details of 380,000 customers who made the booking through the website ba.com and mobile app.


Latest articles

ThreatHunter.ai Stops Hundreds of Attacks in 48 Hours: Fighting Ransomware and Nation-State Cyber Threats

The current large surge in cyber threats has left many organizations grappling for security...

WordPress Plugin Flaw Exposes 200,000+ Websites for Hacking

A critical security flaw has been identified in the Ultimate Member plugin for WordPress,...

Hackers Actively Hijacking ConnectWise ScreenConnect server

ConnectWise, a prominent software company, issued an urgent security bulletin on February 19, 2024,...

Heavily Obfuscated PIKABOT Evades EDR Protection

PIKABOT is a polymorphic malware that constantly modifies its code, making it hard to...

Anonymous Sudan Promoting New DDoS Botnet: Beware

It has come to light that a group known as Anonymous Sudan is actively...

Scattered Spider: Advanced Techniques for Launching High-Profile Attacks

Scattered Spider is a threat group responsible for attacking several organizations since May 2022...

8220 Hacker Group Attacking Linux & Windows Users to Mine Crypto

In a significant escalation of cyber threats, the 8220 Gang, a notorious Chinese-based hacker group, has intensified its attacks...
Guru baran
Guru baranhttps://gbhackers.com
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Live Account Takeover Attack Simulation

Live Account Take Over Attack

Live Webinar on How do hackers bypass 2FA ,Detecting ATO attacks, A demo of credential stuffing, brute force and session jacking-based ATO attacks, Identifying attacks with behaviour-based analysis and Building custom protection for applications and APIs.

Related Articles