Virgin America says a hacker broke into its network, forced staff to change passwords

科技动态 2017-07-28

(Image: file photo)

A hacker broke into Virgin America's corporate network earlier this year, the company has confirmed.

The airline said in a letter to employees , published Thursday, that the hacker had "gained unauthorized access to certain Virgin America information systems containing your data."

The breach happened on March 13, days before the airline was formally acquired by Alaska Air for $2.6 billion . The airline, founded by Richard Branson in 2004, will retire its branding by next year.

The hacker "gained access to... login information and passwords" that employees use to access Virgin America's corporate network.

A spokesperson confirmed that 3,120 employees and contractors had their login information compromised, while 110 additional employees may have had personal information stolen, such as addresses, social security numbers, details of government-issued IDs (such as driving licenses), and health-related information.

But it's not known how the hacker gained access to Virgin America's network.

A person who used to work for the airline told ZDNet that the company hosted its email with Google and requires employees to use two-factor authentication, which suggests that the hacker likely did not use usernames and passwords that might have been stolen or exposed from another breach. The use of two-factor authentication on the network would also prevent the hacker from using credentials from an account with higher privileges, such as system administrators, to access further systems and databases.

The company's security team said in the letter that it identified the unauthorized access, and mitigated the hacker's access.

Employees and contractors were forced to change their passwords. The airline also said it consulted an unnamed cybersecurity firm and informed law enforcement of the breach.

"Customer data for Virgin America and Alaska Airlines was not impacted," a spokesperson said.

The breach isn't thought to be related to a recent breach of Sabre systems, a reservation software company that revealed it had been attacked earlier this year.

The company's software is used by hundreds of airlines, including Virgin America , and thousands of hotels to manage passenger and guest reservations, revenue management, and human resources. Several major companies -- including Google , Hard Rock Hotels ,Loews, and some Trump properties -- have revealed that they had data stolen as a result of the Sabre breach.

"We have implemented additional security policies, procedures and tools to enhance our security program, and will continue to evaluate additional security enhancements going forward," the spokesperson said.

ZDNet Security Blog

责编内容by:ZDNet Security Blog (源链)。感谢您的支持!


Cha-ching! NotPetya hackers cash out – but victims... All the Bitcoins paid by victims of the NotPetya ransomware attack were withdrawn overnight. So...
Hackers emptied Ethereum wallets by breaking the b... At midnight ET last night, MyEtherWallet users started noticing something odd. Connecting to the ser...
Hackers vs. Mold: Building a Humidistat Fan Having a mold problem in your home is terrible, especially if you have an allergy to it. It can...
微软号召成立全球网络溯源组织 曝光黑客身份... 网络攻击四处点火,网络骚乱越来越大,IT巨头微软和独立安全专家呼吁组建新的全球性非政府组织(NGO),专职揭露网络攻击背后黑客的身份。 美国智库兰德公司最近的一份报告将此NGO命名为 “全...
HBO offered hackers $250,000 ‘bug bountyR... Apparently ‘surprised’ by release of documents, TV network attempts to push back ransom deadline wit...