Millions of Passenger Data Stolen in a Star Alliance Attack

The SITA, empresa multinacional de tecnologias de informação especializada em serviços direcionados para a indústria da aviação, confirmou que foi vítima de um ciberataque a 24 de fevereiro. Este ataque levou a um incidente de segurança envolvendo a fuga de dados pessoais que estavam armazenados nos seus servidores que, por sua vez, processam informações de passageiros para companhias aéreas, como foi o caso da Star Alliance. Potencialmente podem estar envolvidas mais de 400 companhias aéreas como clientes, representando cerca de 90% de todo o setor de transporte aéreo de passageiros.

“This data breach does not include any member passwords, credit card information or other customer data such as itineraries, reservations, tickets, passport numbers, email addresses or other contact information”, SITA said in a statement.

After learning of the incident, SITA said it acted quickly to contain the threat. 

“We take the security and privacy of customer data seriously and want to assure our customers that we are working with the Star Alliance to ensure stronger systems are in place to prevent something similar from happening in the future.”

Note: The competent authorities must be notified within 72 hours after realizing that there has been an attack, immediately opening an internal process aimed at protecting personal data and determining responsibilities for the situation.

If you still don't have an information security system in your company, get to know our services better by ISO 27001 and GDPR. Strongstep has a set of cybersecurity experts ready to ensure your company's success in improvement and certification activities. Contact our team.

Want to protect your business from cybersecurity attacks?


Get to know some of the areas where we operate.

ISO 27001
CMMI for Services