KLM warns of a data breach. The organization notified members of frequent flyer program Flying Blue that an unauthorized party may have accessed personal data.

The breach was confirmed by parent company Air France-KLM, according to Dutch media. The damage appears to be limited to members of frequent flyer program Flying Blue. Some Twitter users report they’ve received an email about the data breach. Others say they weren’t notified.

This could mean that some members are unaffected, but little is known at present. Air France-KLM has not shared a statement on its press page at the time of writing. However, according to the Dutch media, the organization confirmed that “affected customers and privacy authorities in the Netherlands and France have been notified.”

Air France-KLM

Air France-KLM did not confirm how many customers were affected. In the email, the organization states that an unauthorized party may have had access to customer data, including first and last names, phone numbers, email addresses and transaction details. Air France-KLM stressed that credit card and payment information were not exposed.

Frequent flyer program Flying Blue allows members to save for discounts on flights. In addition to KLM and Air France, members fly with Transavia, Air Calin, Kenya Airways and Tarom. Air France-KLM claims its IT security team stopped the incident.

Data breach

Although the organization confirmed that the data breach was caused by an ‘unauthorized party’, it’s unclear how the unauthorized party was able to access customer data.

In related news, Slack recently lost code to an unauthorized user. The person used stolen employee login credentials to log into GitHub repositories and download code.

Tip: Okta’s source code has been stolen