Skip to main content

Thieves hack American and United accounts, book free flights

Cybercriminals armed with usernames and passwords broke into customer accounts at American and United airlines, with some going so far as to book free flights and seat upgrades.

Affected customers were notified by email on Monday, though the hack apparently took place some time last month.

Recommended Videos

A spokesperson for United told the Associated Press that since early December around 35 MileagePlus accounts had seen activity involving fraudulently booked trips or mileage transactions.

American appears to have been hit harder by the hack, however, with around 10,000 accounts affected. Despite this, up to now it said it’s only aware of a couple of cases where a flight or upgrade was booked without the account holder knowing. The carrier promised to cover the cost of a credit-watch service for affected customers for a period of 12 months.

Both airlines were at pains to point out that their respective computer systems had not been breached and credit card numbers had not been exposed, but added that it was possible information in a user’s account profile, such as a customer’s mailing address, could have been viewed.

It’s assumed the criminals obtained the account information from sources outside of the airlines’ systems, though at this stage the thieves’ method of operation isn’t clear.

While the airlines will certainly have been embarrassed by the incident, at this stage it looks as if the damage has been minimal. However, customers with the carriers will no doubt be seeking assurances that their personal data is indeed safe and that the airlines are doing what they can to ensure they have the right defenses in place should hackers try to dig a little deeper next time around.

Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
Topics
Hacking-as-a-service lets hackers steal your data for just $10
A depiction of a hacker breaking into a system via the use of code.

A new (and cheap) service that offers hackers a straightforward method to set up a base where they manage and perform their cyber crimes has been discovered -- and it’s gaining traction.

As reported by Bleeping Computer, security researchers unearthed a program called Dark Utilities, effectively providing a command and control (C2) center.

Read more
Free Starlink Wi-Fi could be coming to a flight near you
Singapore Airlines Premium Economy

The skies are about to get friendlier -- and faster -- for your Wi-Fi-enabled laptops, tablets, and smartphones. Hawaiian Airlines announced that it has inked a deal with SpaceX's Starlink satellite division to bring internet connectivity aboard flights.

Financial terms of the deal were not disclosed, but Hawaiian Airlines and SpaceX revealed that travelers will get access to free in-flight Wi-Fi as part of the access.

Read more
Destructive hacking group REvil could be back from the dead
Person typing on a computer keyboard.

There was a period in 2021 when the computing world was gripped by fear of a dizzyingly effective hacking group fittingly named REvil -- until its website was seized by the FBI and its members arrested by Russia’s security services, that is. Yet like a malevolent curse that just can’t be dispelled, it now seems the group’s websites are back online. Has the group returned to spread discord and wreak havoc once again?

In case you missed them the first time around, REvil came to global attention by hacking into various high-profile targets, pilfering secret documents, then threatening their release unless a ransom was paid. In a notable case, the group stole and published files from Apple supplier Quanta Computer, including some that spilled the beans on unreleased product designs.

Read more