News broke earlier stating that Cathay Pacific admitted data including passport numbers, identity card numbers, email addresses and credit card details were accessed in a data breach affecting over 9 million passengers.
Commenting on this, Sam Curry, Chief Security Officer at Cybereason, said “The Cathay Pacific breach is a clear indication that the airline industry has a target on its back, given that British Airways and Air Canada have also been in the news in recent months for material breaches of customer data and personal information. In the bigger picture, it would be premature to speculate on the overall damage to Cathay’s customers and the airline itself. Passengers that travel with Cathay should assume their personal information has already been stolen many times over and it is unfortunately the reality facing billions of people in the connected world we live in. Collectively, black hat hackers are patient and their persistence means they are likely to be successful 100 percent of the time when they attempt to breach a system. This stacks the cards against the defenders, meaning that Cathay and the airline industry as a whole needs to rethink their strategy around network detection and start taking the fight to the hacker by going on the offensive with more advanced technologies and services that will stop threats before they can materialise.”