Air New Zealand hacked, customer information is at risk of falling into the hands of hackers

In a latest move, Air New Zealand - one of New Zealand's largest airlines, rushed to send an email to all customers who have registered its airline client program Airpoint to warn. about a phishing attack that allowed attackers to successfully compromise the email accounts of two key employees, which in turn could expose customers' personal information to high risk of unauthorized access. .

1. Discovering a new zero-day vulnerability in Steam, more than 100 million users may be affected

Air New Zealand hacked, customer information is at risk of falling into the hands of hackers Picture 1 Air New Zealand is New Zealand's largest airline

According to information posted on Air New Zealand's official website, the airline serves an average of 17 million passengers a year, with 51 destinations around the world. Thus, the number of records containing personal information of customers at risk of falling into the hands of hackers can reach tens of millions, leading to a bad network security disaster, and damage will be difficult to estimate. OK.

Customers who sign up for Airpoint's Airpoint program will receive certain bonuses named Airpoint Dollars after each flight. This amount is accumulated in the customer's personal account and they can be freely used to purchase items in Airpoints Store or even pay for the next flight.

This is a form of promotion that retains the extremely successful user of Air New Zealand. It is estimated that the number of people enrolled in the Airpoint program fell to about 2 million people, and now their personal information is in the state of 'weighing thousands of hairs'.

1. Twitter appears 'error' that causes user information to be approached by third-party advertising providers

Credit card data is not affected

"We regret to announce that some of your personal information may have been affected by a recent fraud incident involving two Air New Zealand employee accounts", director of customer service Air New Zealand store Jeremy O'Brien, said in the letter to the affected passengers.

Earlier, Air New Zealand spokesman once confirmed in an interview that customers' Airpoint accounts will be secured before security incidents. And in the letter sent to the customer, Jeremy O'Brien also mentioned that "some information regarding your membership profile may be displayed in our internal documents. Password Your Airpoint and credit card details are completely unaffected. "

1. More than 1 million payment card information from Korea is sold on Dark Web

Air New Zealand hacked, customer information is at risk of falling into the hands of hackers Picture 2 Air New Zealand is currently focusing on investigating the cause of the attack

It is not clear whether the above important information of the customer is kept safe as promised by Air New Zealand, but the above statements have helped the situation become less stressful, and remedial work The incident was immediately deployed.

The company has absolutely secured two compromised email accounts after discovering a phishing attack, and started an investigation to learn more about how attackers can access guest data. goods as well as internal information in the system.

Jeremy O'Brien said Air New Zealand is also focusing "on further strengthening security processes to prevent any future similar incidents from happening soon".

1. British Airways has a systematic, delaying 'error' at many airports in the UK, customers dumping stones on Twitter

Warning about phishing attacks targeting airlines worldwide

Air New Zealand customers are also advised "to be alert to the emergence of phishing emails in the next few months" that could lead to a large amount of personal information being stolen.

Identity theft may occur after leaking personal information, Air New Zealand customers who have received mail from the airline should check their bank statements, at the same time. Pay attention to monitor online social network accounts to identify any unusual signs that your account is illegally controlled.

Phishing is not a new form of cyber attack. It is one of the oldest forms of cyber attack, but it is always effective because it directly targets human mistakes. For example, an employee in the corporate network is mistaken and fooled, the company's security system, no matter how strong it will be punched.

1. [Infographic] How to recognize and prevent Phishing attacks

Air New Zealand hacked, customer information is at risk of falling into the hands of hackers Picture 3 Phishing is absolutely not scary if we always raise our guard

In the past few months, phishing attacks have tended to target more airlines, because the amount of personal data that customers hold is often very high when for sale on the black market. Therefore, in addition to strengthening the security system, airlines should also pay special attention to the addition and enhancement of knowledge for employees in terms of security - network security.

Phishing attacks are completely not scary if we are alert and have enough knowledge to protect ourselves.