December 6, 2023
Image used for representational purposes. 

National carrier Air India has reported a massive cybersecurity attack, leading to the personal data leak of passengers. The incident has affected around 45 lakh data subjects across the world.

The breach involved personal data registered between 26 August 2011 and 3 February 2021, with details that included name, date of birth, contact information, passport information, ticket information, Star Alliance and Air India frequent flyer data as well as credit cards data. However, in respect of his last type of data, CVV/CVC numbers are not held by our data processor.

Among the steps taken to ensure safety of data included investigating the data security incident, securing compromised servers, engaging external specialists of data security incidents, notifying and liaising with credit card issuers, and resetting passwords of Air India FFP program.

Further, our data processor has ensured that no abnormal activity was observed after securing the compromised servers. the airline said, while calling on passengers to change their passwords. The attack is said to have taken place in the last week of February this year.

Tags:

1 thought on “Air India Data Breach

  1. Pingback: APT41 behind AirIndia Breach – TheCyberThrone

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

You may have missed

Microsoft Echo’s on APT 28 exploiting CVE-2023-23397

December 5, 2023

Papercut Privilege Escalation Vulnerability Unearthed

December 5, 2023

DanaBot Trojan Deploying Cactus Ransomware

December 4, 2023

LogoFAIL Firmware Attack

December 3, 2023

Proliance Surgeons Discloses a Data Breach

December 3, 2023

23andMe Breach affected 14K Customers

December 3, 2023
%d