Air New Zealand hacked, customer information is at risk of falling into the hands of hackers

In a latest move, Air New Zealand - one of New Zealand's largest airlines, rushed to send an email to all customers who have registered its airline client program Airpoint to warn. about a phishing attack that allowed attackers to successfully compromise the email accounts of two key employees, which in turn could expose customers' personal information to high risk of unauthorized access. .

Discovering a new zero-day vulnerability in Steam, more than 100 million users may be affected

Air New Zealand hacked, customer information is at risk of falling into the hands of hackers Picture 1 Air New Zealand is New Zealand's largest airline

According to information posted on Air New Zealand's official website, the airline serves an average of 17 million passengers a year, with 51 destinations around the world. Thus, the number of records containing personal information of customers at risk of falling into the hands of hackers can reach tens of millions, leading to a bad network security disaster, and damage will be difficult to estimate. OK.

Customers who sign up for Airpoint's Airpoint program will receive certain bonuses named Airpoint Dollars after each flight. This amount is accumulated in the customer's personal account and they can be freely used to purchase items in Airpoints Store or even pay for the next flight.

This is a form of promotion that retains the extremely successful user of Air New Zealand. It is estimated that the number of people enrolled in the Airpoint program fell to about 2 million people, and now their personal information is in the state of 'weighing thousands of hairs'.

Twitter appears 'error' that causes user information to be approached by third-party advertising providers

Credit card data is not affected

"We regret to announce that some of your personal information may have been affected by a recent fraud incident involving two Air New Zealand employee accounts", director of customer service Air New Zealand store Jeremy O'Brien, said in the letter to the affected passengers.

Earlier, Air New Zealand spokesman once confirmed in an interview that customers' Airpoint accounts will be secured before security incidents. And in the letter sent to the customer, Jeremy O'Brien also mentioned that "some information regarding your membership profile may be displayed in our internal documents. Password Your Airpoint and credit card details are completely unaffected. "

More than 1 million payment card information from Korea is sold on Dark Web

Air New Zealand hacked, customer information is at risk of falling into the hands of hackers Picture 2 Air New Zealand is currently focusing on investigating the cause of the attack

It is not clear whether the above important information of the customer is kept safe as promised by Air New Zealand, but the above statements have helped the situation become less stressful, and remedial work The incident was immediately deployed.

The company has absolutely secured two compromised email accounts after discovering a phishing attack, and started an investigation to learn more about how attackers can access guest data. goods as well as internal information in the system.

Jeremy O'Brien said Air New Zealand is also focusing "on further strengthening security processes to prevent any future similar incidents from happening soon".

British Airways has a systematic, delaying 'error' at many airports in the UK, customers dumping stones on Twitter

Warning about phishing attacks targeting airlines worldwide

Air New Zealand customers are also advised "to be alert to the emergence of phishing emails in the next few months" that could lead to a large amount of personal information being stolen.

Identity theft may occur after leaking personal information, Air New Zealand customers who have received mail from the airline should check their bank statements, at the same time. Pay attention to monitor online social network accounts to identify any unusual signs that your account is illegally controlled.

Phishing is not a new form of cyber attack. It is one of the oldest forms of cyber attack, but it is always effective because it directly targets human mistakes. For example, an employee in the corporate network is mistaken and fooled, the company's security system, no matter how strong it will be punched.

[Infographic] How to recognize and prevent Phishing attacks

Air New Zealand hacked, customer information is at risk of falling into the hands of hackers Picture 3 Phishing is absolutely not scary if we always raise our guard

In the past few months, phishing attacks have tended to target more airlines, because the amount of personal data that customers hold is often very high when for sale on the black market. Therefore, in addition to strengthening the security system, airlines should also pay special attention to the addition and enhancement of knowledge for employees in terms of security - network security.

Phishing attacks are completely not scary if we are alert and have enough knowledge to protect ourselves.

Marvin Fry

Update 12 August 2019

You should read it

May be interested

How do hackers attack your Facebok account and how to prevent this process?
hackers can attack your facebook account in many different ways, such as attacking email addresses, phishing .... to better understand how hackers attack your facebook account and solutions to prevent this process, please refer to the following article of network administrator.
Filipino hackers attack the Vietnamese web, retaliating that many users' Facebook accounts are 'hacked' by Vietnamese people
there is a cyber attack campaign targeting websites of vietnamese individuals and organizations launched by filipino hackers to retaliate against many 'hacked' filipino accounts by vietnamese people.
Prevent Microsoft from collecting system information on Windows 10
customer experience improvement program (ceip) is a feature enabled by default on windows 10. this feature will secretly collect information on the system to report to microsoft. the information that customer experience improvement program (ceip) collects includes hardware configuration and how you use the operating system and other programs and software.
In turn, Microsoft admitted being hacked because of the SolarWinds vulnerability
microsoft has admitted that they were attacked by hackers through a vulnerability of solarwinds' software update system. however, the software giant denied that hackers used their software to infect users as well as customers.
The leading site to learn hacking skills
when it comes to hackers, perhaps the first model we imagine is college students or experts in computer science.
Why can't YouTube automatically block the video of New Zealand shootings that have been re-up rampant?
youtube's content id tool can instantly detect and handle pirated videos, but why can't this video social network stop violent videos like the shootings in new zealand?
TeamViewer is attacked by Chinese hackers, any computer logged in can be controlled
teamviewer - a remote control tool used by a lot of people, has been hacked by chinese hackers.
Vietnamnet network crashes: What is anticipated
vietnamnet's online newspaper, which was hacked by hackers yesterday (november 22), is considered a big warning for all vietnamese websites today. however, this incident has been predicted by network security experts many years ago.
5 signs that your family's surveillance camera has been hacked
when hackers attack and gain control, they will try to hide the presence on your system. however, there are still some signs to help you identify the camera system has been hacked.
The world's largest Torrent sharing site was hacked
the biggest torrent sharing site the piratebay has been hacked by hackers. personal information of about 4 million users has been discovered by crooks.