Heimdal Security Blog

Air France and KLM Alert Customers of Account Security Breach: What You Need to Know

Flying Blue customers have been informed that some of their personal information was exposed following a breach of their accounts.

Clients of Air France, KLM, Transavia, Aircalin, Kenya Airways, and TAROM can exchange loyalty points for rewards through Flying Blue.

An unauthorized entity has been detected suspiciously using your account. As a result, we have immediately taken corrective action to prevent further exposure of your data,” a notification sent to consumers stated. Our Information Security department is taking measures to prevent any suspicious activity on your account.

Source

The KLM official Twitter account confirmed the attack, telling one impacted customer that “the attack was blocked in time and no miles were charged.”

Customers who have received breach notifications have reported this [1, 2, 3] across social media networks. They are at risk of having their names, email addresses, phone numbers, latest transactions, and Flying Blue information compromised.

According to the breach alerts, this incident did not expose customers’ credit card and payment information.

Additionally, affected customers were advised that their accounts had been locked due to the breach and that they should change their passwords on the KLM and Air France websites.

Source

However, neither responded when BleepingComputer reached out to KLM and Air France for comment earlier today.

If you liked this article, follow us on LinkedIn, Twitter, Facebook, YouTube, and Instagram for more cybersecurity news and topics.