Airline company Air France-KLM discloses security breach

Airline company Air France-KLM is notifying the customers of its loyalty program Flying Blue of a data breach.

Airline company Air France-KLM announced it has suffered a data breach, data belonging to customers of its loyalty program Flying Blue were exposed.

The Flying Blue loyalty program is used by other airlines, including Aircalin, Kenya Airways, TAROM, and Transavia. The company did not provide details about the security breach, it is not clear if threat actors had access to its infrastructure.

The company notified impacted customers of suspicious activity related to their accounts, and the notice sent to the customers informed them that some of their personal information might have been exposed.

Compromised data include names, email addresses, Flying Blue numbers and level, miles balance, phone numbers, and latest transactions. Air France-KLM pointed out that no financial information was exposed.

“Our security operations teams have detected suspicious behavior by an unauthorized entity in relation to your account. We have immediately implemented corrective action to prevent further exposure of your data,” reads the notification sent to customers.

The airline locked customers’ accounts and required customers to reset their passwords in order to regain access.

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, Air France-KLM)

[adrotate banner=”5″]

[adrotate banner=”13″]