KLM is warning customers for data breach, names and contact information have been leaked

KLM has been hit by a data breach in which passengers’ personal data has been stolen.

According to an email that was sent by KLM, a “fraudster” gained limited access to a third-party system that is used by the airline company.

IT employees took necessary steps to address the situation and implemented additional protective measures to prevent this from happening again.

However, the unknown assailant managed to collect personal data of some of its customers, including first and last names, contact details, subject lines of service request emails, and Flying Blue numbers and associated tier level.

KLM stresses that data such as credit card details, passport numbers, Flying Blue Miles balances, passwords, or booking information was not involved.

Although the attacker may not have taken enough information to commit identity fraud, the exfiltrated data can be used to send targeted phishing messages to gullible victims and collect more detailed information. Therefore, KLM is asking affected customers to stay alert.

“The data involved in this breach could be used to make phishing messages appear more credible. If you receive unexpected messages or phone calls, especially asking for personal information or urging you to take action, please check their authenticity,” the airline company recommends.

In accordance with European data protection laws, the incident has been reported to the Dutch data protection authority (DPA).

KLM hasn’t disclosed how many customers have been affected by the data breach. When the incident happened, who’s responsible for the breach, how long he was able to access KLM’s corporate systems, and the identity of the third-party involved remain unknown at this time.

According to the airline company, similar attacks have been reported by other companies in recent days. Tech company Cisco, insurance company Allianz Life, jewelry retailer Pandora, and airline company Qantas all reported data breaches caused by attackers who gained access to third-party systems, including Customer Relationship Management (CRM) environments.