Transport

SIA’s Website Glitch Exposes Personal Details of 285 KrisFlyer Members

31 December - 8 January 2019

The personal details of 285 KrisFlyer members were exposed due to a software glitch affecting Singapore Airlines’ (SIA) website. The breach happened when any two KrisFlyer members accessed transactions displaying their membership information at the same time, while also being assigned the same server by the system.
Cyber_News_Transport
The personal details of 285 KrisFlyer members were exposed due to a software glitch affecting Singapore Airlines’ (SIA) website. The breach happened when any two KrisFlyer members accessed transactions displaying their membership information at the same time, while also being assigned the same server by the system. The exposed details included names, email addresses, account numbers, membership tier statuses, KrisFlyer miles and rewards, travel history, and passport details. SIA said that the bug has been resolved and the Personal Data Protection Commission (PDPC) has been informed of the breach. 

References:
[1] Over 280 KrisFlyer members' details exposed due to software bug
 
 
 
 
 

More Weekly Cyber Newsanalysis and insights

Ensign Consulting

Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.​

Ensign Systems Integration

Architecting and implementing cybersecurity solutions that bolster defences

Ensign Managed Security Services

Managing your security operations for advanced threat detection, continuous monitoring, and triage services

Ensign Labs

Performing deep research to analyse vulnerabilities, deploy advanced threat hunting and provide cyber threat intelligence