China Eastern hit by data leak

Advanced Search

The story appears on

Page A5

December 5, 2014

GET this page in PDF

Free for subscribers

View shopping cart

China Eastern hit by data leak

By Yang Jian | December 5, 2014, Friday |

Print Edition

A SIGNIFICANT amount of personal information about China Eastern Airlines passengers was leaked this week following an attack on a computer system used by one of its ticket agents.

The breach was reported by a white-hat hacker — a benign expert who tests the security of computer systems — on wooyun.org.

The anonymous poster claimed that a large volume of information about the airline’s customers was leaked on Tuesday due to a loophole in the system. The problem was flagged as “high alert.”

Wooyun is a website on which hackers share information about weaknesses they find in computer networks.

China Eastern yesterday confirmed that one of its agents had been hacked and that information about several passengers had been leaked.

It declined to reveal details of the attack, but told Shanghai Daily that the data related to customers that had been given refunds by the agent.

Despite the carrier claiming to have upgraded its security, the breach comes just months after a white hat reported in August that swathes of information about China Eastern passengers — including their names, dates of birth, passport and ID card numbers, and private addresses — had been leaked.

Many of the airline’s customers later complained of being bombarded with telephone calls from fraudsters and cheats.

China Eastern said at the time that all of its messages to passengers are sent via its official hotline on 95530.

Society

About Us
|
Terms of Use
|
RSS
|
Privacy Policy
|
Contact Us
|
Shanghai Call Center: 962288
|
Tip-off hotline: 52920043

沪ICP证：沪ICP备05050403号-1
|
互联网新闻信息服务许可证：31120180004
|
网络视听许可证：0909346
|
广播电视节目制作许可证：沪字第354号
|
增值电信业务经营许可证：沪B2-20120012

China Eastern hit by data leak

Email this to your friend