"Personal Data of 4.5 Million Passengers Exposed in Air India Data Breach"

India's national airline Air India released a statement to passengers, revealing that it had experienced a data breach in February this year. The data breach has led to the exposure of data belonging to 4.5 million Air India passengers worldwide. Unknown threat actors hacked Air India's data management service provider SITA Passenger Service System (SITA PSS), responsible for the storage and processing of Air India passengers' personal information. The data breach affects passengers who registered between August 26, 2011, and February 3, 2021. The attackers accessed a decade worth of passenger data, containing names, passport information, credit card details, birth dates, ticket information, contact information, and frequent flyer data. Air India did confirm that CVV/CVC numbers were not exposed. There is currently no sign that the leaked data is being misused. However, passengers are urged to change their passwords. This security incident affects multiple airlines, as SITA provides services to Star Alliance, Japan Airlines, Air New Zealand, Malaysia Airlines, Cathay Pacific, and more. This article continues to discuss the impact of the Air India data breach, the measures taken by the airline in response to the breach, other airlines affected by this incident, and what affected flyers need to do to avoid security risks. 

CISO MAG reports "Personal Data of 4.5 Million Passengers Exposed in Air India Data Breach"