Air France and KLM, two of Europe’s major airlines and partners in the joint Flying Blue loyalty program, have disclosed a data breach that exposed personal information of a number of their customers. The breach, reportedly detected during routine security monitoring, affected members of the Flying Blue frequent flyer program.
What Happened?
According to official statements from both airlines, unauthorized third parties gained access to certain Flying Blue accounts. The breach was swiftly detected, and affected accounts were immediately locked. Both companies launched an internal investigation and engaged cybersecurity experts to assess the scope of the intrusion.
The compromised data includes:
- Full names
- Email addresses
- Phone numbers
- Recent transactions and mileage activity
- Travel preferences and most recent destinations
Critically, the airlines stated that no credit card or passport data was compromised.
Company Response
Air France and KLM have notified affected customers, advising them to change their passwords immediately and stay alert for potential phishing attempts. The incident has also been reported to data protection authorities, including the European Data Protection Board (EDPB).
“Protecting our customers’ data is a top priority. We took immediate action to prevent further unauthorized access and are reinforcing our security protocols,” a spokesperson for Air France said.
Also, learn how to check if your password, email or credit card information appeared in known leaks.
Potential Risks and Expert Warnings
Cybersecurity experts warn that even though financial data was not accessed, the exposed personal information could still be used for targeted scams and phishing attacks. Users are encouraged to remain cautious, especially when receiving emails or text messages from unknown senders.
The breach highlights ongoing security challenges in the aviation industry, which is increasingly reliant on digital platforms and customer data. Similar incidents have previously affected other major carriers such as British Airways and Cathay Pacific.
What Should Affected Customers Do?
If you are a Flying Blue member, consider taking the following actions:
- Change your account password immediately.
- Enable two-factor authentication, if available.
- Remain cautious of suspicious emails or text messages.
- Monitor your account for any unusual activity.
- Contact customer support if you notice anything irregular.
