Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
The company apologized for the incident and assured that no customer travel or payment information was compromised.
India’s newest airline, Akasa Air, has exposed personal identification data including names, email IDs and phone numbers of its customers.
A technical error in our check-in and check-in service on Thursday exposed personal information such as names, gender, email addresses and phone numbers of some passengers to be viewed by unauthorized persons, the airline said in a statement.
The company apologized for the incident and assured that no customer travel or payment information was compromised.
It reported the incident to CERT-In, the government’s nodal authorities tasked with dealing with such incidents.
They also stopped this unauthorized access by completely disabling the related functionality of their system, added additional controls to address this issue, and restored their login and registration services.
The issue was first discovered by cybersecurity researcher Ashutosh Barot on August 7, the day the airline began flight operations.
He pointed this out on a blog and explained how it could gain access to a user’s personal information, such as contacts, while examining the airline’s security system for bugs.
