Customers of Flying Blue have been informed by Air France and KLM that their accounts were compromised, which resulted in the disclosure of some of their personal information.
Flying Blue is a loyalty program that lets customers of a number of airlines, such as Air France, KLM, Transavia, Aircalin, Kenya Airways, and TAROM, trade loyalty points for a variety of rewards.
“In relation to your account, our security operations teams have detected suspicious behavior by an unauthorized entity. In notifications sent to affected customers, we stated, “We have immediately implemented corrective action to prevent further exposure of your data.”
“Our Information Security department is implementing measures to stop any suspicious activity on your account.”
One of the affected customers was informed by KLM’s official Twitter account that “the attack was blocked in time and no miles were charged.”
However, KLM advised, “I do invite you to change your Flying Blue-password via the Flying Blue-website.”
This came as a result of customer notifications of the breach that were shared on social media [1, 2, 3].
Names, email addresses, phone numbers, the most recent transactions, and Flying Blue information like their earned miles balance are on the list of potentially compromised data.
Customers’ credit card or payment information was not exposed, according to the breach alerts.
Customers who had been affected were also told that the breach had locked their accounts and that they needed to change their passwords on the KLM and Air France websites.