Star Alliance Data Breach

Reply Subscribe

Thread Tools

Search this Thread

Mar 5, 2021, 1:41 am

Dave_C

Original Poster

Join Date: Jan 2003

Location: London, UK

Posts: 5,655

SITA Data Breach

Just had this through from Miles & More.

Quote:

Between 21.1. and 11.2.2021, a data breach occurred at a service provider of one of our Star Alliance partners. The incident involved hackers penetrating a booking system and accessing customer data from Star Alliance partners.

The data in question relates exclusively to service card numbers, status level and in some cases names. Unfortunately, your customer data is also affected. You can rest assured, however, that no passwords, email addresses or other personal customer data were stolen in the incident.

Transparency is a top priority for us at Miles & More. That is why we are hereby informing you about the incident, although it took place outside the Lufthansa Group. There is no need for you to take any action in this matter.

Yours sincerely,

Your Miles & More Service Team

Last edited by Dave_C; Mar 5, 2021 at 2:50 am

Mar 5, 2021, 1:48 am

Mr.Potato

Join Date: Oct 2018

Programs: LH FTL, FB Gold

Posts: 132

I am very doubtful of transparency claims when there is no sharing of the name of the service provider involved. Once again a disgrace when it comes to personal data.

Mar 5, 2021, 1:51 am

Dave_C

Original Poster

Join Date: Jan 2003

Location: London, UK

Posts: 5,655

Quote:

Originally Posted by Mr.Potato

I am very doubtful of transparency claims when there is no sharing of the name of the service provider involved. Once again a disgrace when it comes to personal data.

My guess is that it'll be one of the GDS providers, perhaps Amadeus?

Mar 5, 2021, 2:00 am

PAX_fips

Join Date: Oct 2015

Location: next to HAM

Programs: LH M+M

Posts: 960

It's SITA
https://www.sita.aero/pressroom/news...rity-incident/

Dave_C and BinSabai like this.

Mar 5, 2021, 2:26 am

lefrid

Join Date: Apr 2016

Programs: LH SEN, HH Dia, Accor Plat

Posts: 127

Allais pathetic excuses

On SITA website... Pandemy, COVID19, highly sophisticated attack,... blablabla. Never acknowledging 'we saved money on security, the admin password was left to 000000, ...'. Not even an apology. It is never the fault of the company. There are so many of these breaches now that they all hope we start to be accustomed to these so that they have nothing to do... apart from an already prepared email in case of.

whiskey_sk, flyingfkb, SFO777 and 3 others like this.

Mar 5, 2021, 2:28 am

SK AAR

FlyerTalk Evangelist

Join Date: Nov 2004

Location: Denmark

Programs: TK Elite

Posts: 11,846

Any harm/damage? If no, move on...just my cents.

Mar 5, 2021, 3:10 am

BinSabai

Join Date: Jul 2013

Location: BKK

Programs: TG ROP Platinum, M&M Senator, IHG Platinum, Accor Platinum

Posts: 8,324

Quote:

Originally Posted by SK AAR

Any harm/damage? If no, move on...just my cents.

they claim no damage and members do not need to do anything...

Mar 5, 2021, 3:11 am

Concerto

FlyerTalk Evangelist

Join Date: Feb 2002

Location: Montreux CH

Programs: FB Platinum, M&M FTL, BA Blue

Posts: 11,621

I got the same, having just logged into my email now, and my first reaction was that it was some phishing attempt or something similar. Probably nothing to worry about.

Mar 5, 2021, 3:13 am

f4freeJunior

Join Date: Aug 2005

Location: ZRH

Programs: LX HON Circle

Posts: 3,253

Received a similar email also from other *A members such as SQ. The content of the message was the same.

Mar 5, 2021, 3:38 am

#10

oliver2002

Moderator: Lufthansa Miles & More, India based airlines, India, External Miles & Points Resources

Join Date: Dec 2002

Location: MUC

Programs: LH SEN

Posts: 48,168

AI uses SITA PSS which was breached. If you didn't fly AI there is no harm done, at most they have your M&M number and status.

Mar 5, 2021, 4:29 am

#11

MichielR

Join Date: Aug 2008

Location: Geneva

Programs: LX SEN, AFKL Platinum, BA Bronze,

Posts: 5,632

So hackers now know the number of HON and SEN?

Grog, weero, whiskey_sk and 1 others like this.

Mar 5, 2021, 4:35 am

#12

oliver2002

Moderator: Lufthansa Miles & More, India based airlines, India, External Miles & Points Resources

Join Date: Dec 2002

Location: MUC

Programs: LH SEN

Posts: 48,168

The number of pax who travelled on AI and provided a M&M number starting with 3330 or 2220

Mar 5, 2021, 4:57 am

#13

cas_de

Join Date: Aug 2009

Location: between DM464 and DM463 on the NAPSA26 RNAV TRANS in EDDM

Programs: this and that

Posts: 1,731

Quote:

Originally Posted by oliver2002

The number of pax who travelled on AI and provided a M&M number starting with 3330 or 2220

Travelling on AI during which timeframe? The period mentioned in the press release or anyone that has travelled on AI in the [recent] past?

Mar 5, 2021, 5:14 am

#14

SK AAR

FlyerTalk Evangelist

Join Date: Nov 2004

Location: Denmark

Programs: TK Elite

Posts: 11,846

I seriously doubt many HON or SEN travel with AI (unless it is the only choice available). Let's move on.

Mar 5, 2021, 5:20 am

#15

Dave_C

Original Poster

Join Date: Jan 2003

Location: London, UK

Posts: 5,655

Quote:

Originally Posted by oliver2002

The number of pax who travelled on AI and provided a M&M number starting with 3330 or 2220

But it's not limited to that - they have taken my data, coupled with the ability to login to Lufthansa.com with just the FF# and PIN (which is only 5 digits), I think this *is* a risk.

HONline likes this.

Reply Share

First
Prev
1 / 3
Next
Last

Forum Jump