Amadeus Traveler Data Exposed in a Thwarted Data Leak
Sean O’Neill reports:
A computer expert discovered a vulnerability in one of the systems used by travel distribution company Amadeus, which said it had fixed the issue and that none of the data was misused.
Alp, an Israel-based travel subsidiary, is an online service used by Israeli travel agents and governmental travel agency Inbal to book flights and hotels. It had a database with a weakness that could be pried open to reveal the personal details and email addresses of, allegedly, millions of passengers.
“The configuration flaw, which allowed unauthorized access to information used for a loyalty scheme for travel agencies, and is not related to reservations and ticketing, was discovered by a security researcher,” an Amadeus spokesperson said. “