The private information of fliers with Bangkok Airways has been compromised in a cyber-attack.
Passengers’ names, family name, nationality, gender, phone number, email, address, contact information, passport information, historical travel information, partial credit card information and special meal information appear to have leaked, according to the company’s initial investigation into the incident.
Operational and aeronautical security systems were unaffected, the company added.
Once it discovered the attack on 23 August, the company immediately acted to contain the event with the help of a cyber security team.
It is also strengthening its IT systems and has reported the incident to the Royal Thai police as well as notifying the relevant authorities.
Among the advice the company, which markets itself as Asia’s boutique airline, is giving to customers is be aware of any suspicious or unsolicited calls and/or emails, as the attacker may claim to be from Bangkok Airways and attempt to phish by gathering personal data by deception.
The company also said it takes protection of passengers’ data very seriously and is deeply sorry for the worry and inconvenience the malicious incident has caused.
The LockBit ransomware group has said it was planning to release 103 GB of compressed files it claimed was stolen from Bangkok Airways, IT sector journal ZDNet reported.