The largest expert travel community:
  • 733,002 Total members
  • 10,315 Users online now
  • 1,670,113 Threads
  • 30,004,631 Posts

9.4 Million Fliers Just Had Their Data Leaked

9.4 Million Fliers Just Had Their Data Leaked
Anya Kartashova

Hong Kong’s carrier Cathay Pacific announced that more than 9.4 million Cathay Pacific and Cathay Dragon passengers have been affected by a data breach.

The amount of data leaked varies passenger to passenger, but exposed information includes names, dates of birth, postal addresses, email addresses, identity card numbers, passport numbers, frequent-flyer numbers and credit card numbers.

“The company has no evidence that any personal information has been misused,” a statement made by the airline said. “The IT systems affected are totally separate from its flight operations systems, and there is no impact on flight safety.” Additionally, account passwords have not been compromised, according to the statement.

Cathay Pacific said that it identified unauthorized activity back in March and confirmed that certain data had leaked in May after involving a cyber security team. However, it is not clear why the company waited until now to reveal this information publicly.

Although the airline is based in Hong Kong, it flies to 34 countries in Africa, Asia, North America, Oceania and Europe. In accordance with European Union’s new General Data Protection Regulation, companies must disclose data breach information to clients and law enforcement within three days of discovering it. In this case, it took the carrier about seven months to announce the breach.

Cathay Pacific has notified local police and is now working with relevant authorities, according to the statement.

Air Canada and British Airways have been recent victims of cyber attacks. Air Canada went through a mobile app data breach in August, and British Airways was hacked through its website in September. In both cases, customer data was stolen.

View Comments (3)


  1. Nanda Chai

    October 25, 2018 at 5:56 am

    Knew nothing about this. Ironically, CX sent me an email 2 days ago suggesting I should complete my profile (give them even more personal information) and dangled a carrot that I would then be eligible to receive a special offer for my birthday. LOL. Seriously.

  2. inlanikai

    October 25, 2018 at 6:21 am

    So, how far back does the data go? If the last flight I took with CX was 10 years ago was that data still in their system at the time of the breach? Or had it been purged? Do they know?

  3. Counsellor

    October 26, 2018 at 7:02 am

    Do we know (has CX said) whether the breach was to data related to their Frequent Flyer program, or to general passenger data? That would make quite a difference, seems to me.

You must be logged in on the FORUM to post a comment Login

Leave a Reply


More in News

Google Assistant Will Now Tell You If Your Flight Is Delayed

Jackie ReddyDecember 18, 2018

Human Heart Left Behind Forces Flight to Turn Around

Ryan BoydDecember 17, 2018

Carriers: We Have A Problem With Racism (and Homophobia, and Sexual Harassment…)

Jackie ReddyDecember 17, 2018

Copyright © 2014 Top News Theme. Theme by MVP Themes, powered by Wordpress.