Scandinavian carrier SAS is reassuring passengers that there is no risk to their personal data following a cyberattack on the company’s IT systems.
The attack occurred on 14 February, the Star Alliance airline states, adding that it was one of several companies to be subjected.
Its website and certain other IT functions were unavailable for a few hours.
“Some passengers’ data became visible to other passengers who were active during the ongoing attack,” it adds.
Passengers’ contact details, flight information, and a few digits of credit card numbers could be seen, admits SAS.
“There has been no risk that this information could be exploited,” it insists. “No passport details have been shared and no [loyalty programme] points should be affected.”
SAS says cyberattacks “often come in batches” and more attacks are “likely”, but the company assures that they “should not impact any passenger data”.
It says it is monitoring the situation and co-operating with national agencies, including the civil aviation regulator and law enforcement, to analyse the attack and take preventative steps.
