21 May,2021 10:38 PM IST | New Delhi | PTI
Photo for representational purpose
Air India's passenger service system provider SITA faced a sophisticated cyberattack in February leading to leak of personal data of certain number of the national carrier's flyers, an official statement said on Friday.
Personal data -- including name, date of birth, contact information, passport information, ticket information and credit card data -- which was registered between August 11, 2011, and February 3, 2021, has been leaked of a certain number of Air India's passengers, the statement issued by the airline said.
"While we and our data processor continue to take remedial actions...We would also encourage passengers to change passwords wherever applicable to ensure safety of their personal data," it said.
Data of 4.5 million passengers -- which includes Air India's passengers -- across the world has been "affected" due to the cyberattack on SITA, the statement said. SITA is based out of Geneva in Switzerland.
ALSO READ
Air India posts 60 pc fall in losses at Rs 4,444 cr in FY24: Tata Group
Virgin Atlantic to start second daily Mumbai-London flight
Air India plane makes precautionary landing at Moscow; later takes off for Brimingham
Air India's Delhi-Vizag flight receives hoax bomb threat
Air India's Delhi-Vizag flight receives hoax bomb threat
Also Read: Air India pilots threaten to 'stop work' if Covid-19 vaccination drive not started
"Air India would like to inform its valued customers that its passenger service system provider has informed about a sophisticated cyber attack it was subjected to in the last week of February 2021," the airline said.
While the level and scope of sophistication is being ascertained through forensic analysis and the exercise is ongoing, SITA has confirmed that no unauthorised activity has been detected inside the system's infrastructure after the incident, it added.
"Air India meanwhile is in liaison with various regulatory agencies in India and abroad, and has apprised them about the incident in accordance with its obligations," the airline said.
Air India along with the service provider is carrying out risk assessment and would further update as and when it becomes available, it said.
The airline said it has taken following steps after the data security incident: Secured the compromised servers, engaged external specialists of data security incidents, notified and in talk with the credit card issuers and reset the passwords of Air India frequent flyer programme.
This story has been sourced from a third party syndicated feed, agencies. Mid-day accepts no responsibility or liability for its dependability, trustworthiness, reliability and data of the text. Mid-day management/mid-day.com reserves the sole right to alter, delete or remove (without notice) the content in its absolute discretion for any reason whatsoever.