Tag Archive for: passenger’s

Sunwing passengers in limbo after data security breach

/in



A technical problem at Sunwing Airlines that continues to ground flights is being blamed on a data security breach at the company’s third-party provider.


“A system that is up and running all the time, which never fails, was hacked,” said Sunwing President Mark Williams. “They had a cyber-breach and they’ve been unable to get the system up.”


As a result, the company has been forced to check-in passengers manually, causing significant delays at airports across Canada as well as in sun destinations.


“It’s been delayed eight times,” said one woman at Pearson International Airport in Toronto. “We’ve been shuffled to three hotels.”


Aviation authorities in both Canada and United States want to ensure the system, provided by Airline Choice, is secure before it is reactivated.


In an e-mailed statement to the Canadian Press Wednesday, Airline Choice described the breach as a “data security event” that affected a limited number of its computer systems.


“As a precaution, we took certain systems offline to secure our environment. We also immediately launched an investigation to determine the nature and scope of the event,” the company said.


Neither Airline Choice nor Sunwing have been able to provide any timeline in terms of when the system will be back up and running. Sunwing says it is working with other airlines to source additional planes and to help relieve some of the backlog in airports.


Cyber security expert Ritesh Kotak says this incident is an example of why companies need to have a back-up plan when it comes to the technology it relies on.


“What happens when the lights get turned off,” he said. “How do you ensure you have business continuity and ensure that your processes are safe and secure and business can actually continue?”


Airline Choice said it has begun restoring some functionality to its systems and is working around the clock to restore service for its clients, which include dozens of airlines and cargo companies around the world.


But aviation expert John Gradek says Sunwing is just as to blame as its third party for what’s happened over the last three days.


“You have to make sure…

Source…

Travel Pal, the mobile security for public passengers

/in


Travel Pal, the mobile security for public passengers









Copyright © 2020 Jamaica Observer. All Rights Reserved.

Terms under which this service is provided to you.
















Source…

CCC Digital Key 3.0 enables drivers and passengers to use their mobile device as a digital key hands-free

/in


The Car Connectivity Consortium (CCC) announced that its CCC Digital Key Release 3.0 specification is finalized and now available to CCC members. The new specification enables passive keyless access and engine start from a compatible mobile device via Ultra Wideband (UWB) in combination with Bluetooth Low Energy wireless technologies.

“The CCC Digital Key already enables your mobile device to be used as a key for your vehicle,” said Daniel Knobloch, president, CCC. “With the CCC Digital Key Release 3, the user experience just got even better. The combination of Ultra Wideband and Bluetooth Low Energy will allow you to leave your mobile device in your bag or pocket when approaching to unlock and start your vehicle – making Digital Key even more convenient.”

Digital Key Release 3.0 highlights

CCC Digital Key is a standardized ecosystem that enables mobile devices to store, authenticate, and share Digital Keys for vehicles in a seamless, secure and privacy-preserving way. The CCC Digital Key Release 3.0 specification complements the Release 2.0 specification.

Release 3.0 adds hands-free, location-aware keyless access and location-aware features for an improved user-friendly experience through the implementation of UWB in combination with Bluetooth Low Energy. Support for NFC technology is maintained to ensure backward compatibility and battery-low mode.

The latest Release addresses security and usability by authenticating the Digital Key between a vehicle and the mobile device over Bluetooth Low Energy. Mobile devices create and store the Digital Keys in a Secure Element that provides the highest level of protection against hardware or software-based attacks.

UWB offers secure and accurate distance measurement allowing cars to locate authenticated mobile devices so that Release 3.0 not only prevents attacks but also adds a new level of convenience when entering, interacting and starting the car.

The CCC Digital Key Release 3.0 specification is now available to CCC members.

Source…

Air India Reports Data Breach; 45 Lakh Passengers’ Data Compromised

/in


Air India had received the first notification of the cyber attack on 25th February

The breach involved personal data of users registered between 26th August 2011 and 3rd February 2021

While the airline says it is taking remedial actions, the company has advised passengers to change passwords wherever applicable to ensure safety of their personal data

Air India Reports Data Breach; 45 Lakh passengers’ Data Compromised

A cyber-attack on the servers of national air carrier Air India resulted in a massive data breach and affected around 45 Lakh customers of the airline, it informed on Friday ( May 21). Leaked details, including passport and credit card information of these passengers, were compromised in the attack, Air India said in a statement.

“As part of our commitment, we would like to inform you that SITA PSS, our data processor of the passenger service system, recently notified Air India of a data security breach involving personal data of certain passengers, including yours,” the airlines said in a communication to the passengers whose data got stolen.

This incident affected around 4,500,000 data subjects in the world. Air India had received the first notification in this regard on 25th February. The company clarified that the identity of the affected users was only clear to them by 25th March and 5th April respectively. “The present communication is an effort to apprise of accurate state of facts as on date and to supplement our general announcement of 19th March 2021 initially made via our website,” said the statement.

The breach involved personal data of users registered between 26th August 2011 and 3rd February 2021, with details that included name, date of birth, contact information, passport information, ticket information, Star Alliance and Air India frequent flyer data as well as credit cards data. However the passwords of frequent flyers were not  affected, said the statement. The airline also informed that credit card data like CVV/CVC numbers are not held by Air India data processors.

The company is currently investigating the data security incident. It did mention the exact nature of the attack. The airline is securing the compromised servers and engaging external specialists for data security incidents. Further, it stated that…

Source…