SITA Supply Chain Data Breach

SITA, the global leader in air transport data management, has reported a data breach that may have affected passenger information.

The data giant reported the cyberattack on Thursday, February 24, 2021 and confirmed that it has notified several airlines that were affected.

SITA manages air transport communications and information technology for over 90% of airports. The company manages airline reservations, ticketing and aircraft departures.

In what was called a sophisticated attack, the company determined that frequent flier passenger data stored on U.S. servers were accessed, however SITA did not provide information on how the servers were breached. Singapore airlines reported that data on 580,000 KrisFlyer and PPS members was compromised due to the SITA breach. Finnair reported that data on 200,000 members was compromised. Both Finnair and Singapore Airlines confirmed that no payment information, contact information or passwords were compromised. However, Singapore Airlines reported that some membership names may have been accessed. Compromised data of Finnair Frequent Flier members included names, customer numbers, and seating and meal requests.

How were cybercriminals able to access SITA’s networks? There are several opinions on the matter however, some experts speculate that the immensity of operations in a company like SITA, may be where its vulnerability lies. Any lapse or oversight in management makes it easier for sophisticated hackers to find ways to access its servers.

CaseyGerry is investigating the SITA data breach and how a company that serves majority of air travel industry, was so ill-equipped to prevent a data breach like this.

If you are a frequent flier member and have received notification of the breach, please contact our attorneys at (619)238-1811 to explore your legal options.

Our attorneys have over 74-years of experience representing individuals against powerful companies who have failed to protect those they serve.