A flaw in e-ticket systems could mean a hacker can print your boarding pass

best flight tracking apps
Trevor Mogg

Security researchers at the firm Wandera have exposed a vulnerability in the e-ticking system used by several popular global airlines. The vulnerability was discovered in December and involves unsecured check-in emails that can put the personal information of passengers at risk or even allow a hacker to print boarding passes.

Though there is no evidence that currently supports a major data breach, eight airlines including Southwest, Air France, KLM, Vueling, Jetstar, Thomas Cook, Transavia, and Air Europa are impacted by this vulnerability. According to Wandera, these airliners are sending unencrypted check-in links, which otherwise automatically log passengers into a website to check flight status and print boarding passes. That can allow a hacker who is sharing the same Wi-Fi network as a passenger to intercept the link and gain access to the same information.

Several types of personally identifiable information can be accessed through this vulnerability, including passport information, seat assignments, first and last names and baggage selections. However, the type of information that can be stolen depends on each airline e-ticking system. In some cases, hackers can still leverage this information to their advantage to change an itinerary. That includes the ability to add or remove extra bags, change seating arrangements, or alter both the mobile phone number or email associated with a booking.

“Our threat research team observed that travel-related passenger details were being sent without encryption as one of our secured customers accessed the e-ticketing system of one of the airlines mentioned above. It was at that time that Wandera notified the airline and began further research,” Wandera said.

The vulnerability was shared the appropriate government agencies as well as with the airlines. A period of four weeks is given for the vulnerability to be fixed before it was made public. As a solution, Wandera recommends for airlines to adopt strong encryption methods, require user authentication, and use one-time tokens for links in emails.

This would not be the first time that airliners have faced scrutiny relating to its cybersecurity practices. Though more severe, a British Airways data hack in 2018 impacted more than 380,000 passengers after its computer systems were breached. A separate instance with Cathay Pacific also impacted up to 10 million of its customers in 2018.

Buying Guides

The best hatchbacks for 2019 are small in size and big on tech

The hatchback segment isn't huge, but there are still plenty of good options to choose from. Here, we've rounded up the best hatchbacks available in America, whether you're a fan of efficiency or looks.
Movies & TV

'Prime'-time TV: Here are the best shows on Amazon Prime right now

There's more to Amazon Prime than free two-day shipping, including access to a number of phenomenal shows at no extra cost. To make the sifting easier, here are our favorite shows currently streaming on Amazon Prime.
Outdoors

Lyft is offering free bikeshare rides to highlight Earth Day

To highlight Earth Day and promote its own green efforts, Lyft is offering free rides with its bikeshare programs in six cities across the U.S. on April 22. Anyone interested should check the service's website for full details.
Cars

More tech and more space make the Mercedes-Benz GLS the S-Class of the SUV world

Mercedes-Benz introduced the second-generation GLS at the 2019 New York Auto Show. The company's biggest and most luxurious SUV gains more tech features in its quest to become the S-Class of the SUV world.
Computing

Lenovo Legion, IdeaPad gaming laptops sport 9th-gen CPUs and 16-series graphics

Lenovo is expanding its gaming laptop range with a line of new Legion and IdeaPad notebooks that sport Intel's latest, ninth-generation Core CPUs up to an i7 and a choice of Nvidia graphics with options for everything up to an RTX 2080…
Computing

Asus launches a fleet of ROG gaming laptops with 240Hz screens and 9th-gen CPUs

Asus launched updates to nearly every gaming laptop line they have, ranging from the high-end Zephyrus to the budget-level TUF Gaming. The naming schemes might be hard to parse, but there are some impressive options in Asus' new lineup.
Product Review

Without 4K or Core i9, the new Razer Blade Pro trades features for polish

Razer hasn’t updated its 17-inch gaming laptop for a couple of years, while showering most of its attention on the smaller sibling. The new Razer Blade Pro takes a lot of cues from the 15-inch model, stretching it out for the big screen.
Computing

Nvidia’s new GTX 1660 Ti and 1650 graphics cards for laptops start at $799

Nvidia announced the GTX 1660 Ti and GTX 1650, two new mobile graphics cards to flesh out the Turing lineup for laptops. These GPUs don't have the ray tracing capabilities of the RTX 20 series, but start at much lower prices.
Computing

Microsoft reverses decision and extends lifeline to MS Paint for Windows 10

Microsoft reversed its decision to deprecate the classic MS Paint software on Windows 10. Microsoft announced on Twitter that the mainstay free image editor that comes pre-installed with Windows will live on for now.
Computing

Acer gives Predator, Nitro gaming notebooks CPU and GPU upgrades

Acer's latest gaming notebooks will be getting a processor and graphics boost. The company announced that Intel's ninth-generation mobile CPU and Nvidia's GTX 1660 Ti will land on the Predator Helios 300, Nitro 7, and Nitro 5 laptops.
Computing

Dell’s XPS 15 steps up its game with next-gen Intel, Nvidia chips

Dell announced a redesigned XPS 15 with a webcam positioned up top, and the internals make this Ultrabook an even better gaming laptop. The XPS 15 can be configured with Intel's 9th-Gen processors and Nvidia's GTX 16-Series GPU.
Computing

From simple work tools to high-end gaming peripherals, these are the best mice

If you're looking to buy the best mouse for you, whether it's for gaming or work, we have something for you. We've put together a list of our favorite mice, all of which have great features and sell at a great price.
Computing

Amazon drops deals on Razer, Netgear, and Western Digital PC accessories

Grab these deals while you can: As part of their Deal of the Day promotion, Amazon is offering deep discounts on a wide variety of PC accessories including premium gaming mice, external hard drives, and even Wi-Fi routers.
Apple

WWDC 2019 Complete Coverage

Apple’s Worldwide Developer Conference is a key tech event each year, and for Apple fans, it will be one of the two best times of 2019 (along with "new iPhone day," of course). For the last few years, Apple has debuted much of its…