Download Certificate- CMOs | ECIO | Most Admired Brand | Most Trusted Company

141 Airlines Booking System Goes Awry Worldwide


By MYBRANDBOOK


141 Airlines Booking System Goes Awry Worldwide

 

There is a critical vulnerability found in online flight booking system, with this almost half of the fight travellers around the world were found exposed to a critical security vulnerability, that allowed remote hackers to access and modify their travel details and even claim their frequent flyer miles.

 

A Israeli network security researcher Noam Rotem discovered the vulnerability when he booked a flight on the Israeli airline ELAL, successful exploitation of which just required victim’s PNR (Passenger Name Record) number.

 

Hackers are really smart enough to enter into the flight booking system, which is developed by Amadeus, which is widely used by nearly 141 international airlines, including United Airlines, Lufthansa and Air Canada. After booking a flight with ELAL, the traveler receives a PNR number and a unique link that allows customers to check their booking status and related information associated with that PNR.



Rotem found that merely by changing the value of the "RULE_SOURCE_1_ID" parameter on that link to someone else's PNR number would display personal and booking-related information from the account associated with that customer.

 

Using disclosed information, i.e. booking ID and last name of the customer, an attacker can simply access the victim's account on ELAL's customer portal and "make changes, claim frequent flyer miles to a personal account, assign seats and meals, and update the customer's email and phone number, which could then be used to cancel/change flight reservation via customer service. "The report says, the vulnerability could have affected hundreds of millions of travelers.

 

Amadeus has able to fix the issue, and the Rotem's script can no longer identify active PNRs as demonstrated in the above video.


In a statement Amadeus says , "At Amadeus, we give security the highest priority and are constantly monitoring and updating our systems. Our technical teams took immediate action, and we can now confirm that the issue is solved."
 BREAKING NEWS  BREAKING NEWS
Zscaler unveils Digital Experience Monitoring Copilot

Zscaler unveils Digital Experience Monitoring Copilot...

Zscaler has announced groundbreaking innovations - ZDX Copilot, Hosted Mon...

Ola Krutrim unveils its AI vision for India

Ola Krutrim unveils its AI vision for India...

Ola's artificial intelligence platform, Krutrim has revealed its plans to ...

Tamil Nadu Police Facial Recognition Portal faced breach

Tamil Nadu Police Facial Recognition Portal faced breach...

A security flaw was discovered in the facial recognition webpage of the Ta...

With iOS 18, Apple to fully invest in AI

With iOS 18, Apple to fully invest in AI...

Tim Cook, the CEO of Apple, has made reference to sophisticated AI features...

 TECHNO TRENDS  Placeholder image
BHIM to join e-commerce, competing with PhonePe and Google Pay

BHIM to join e-commerce, competing with PhonePe and Google Pay

The government-supported payment software BHIM is getting ready to join t...

The latest version of X helps prevent deepfakes on social medi

The latest version of X helps prevent deepfakes on social medi

To combat deepfakes and shallowfakes, Elon Musk revealed a new update t...

India and Namibia collaborate on a payment system similar to U

India and Namibia collaborate on a payment system similar to U

Once operational, the platform will enable digital transactions in Namibia,...

Sebi issues show-cause notices to six Adani group firms

Sebi issues show-cause notices to six Adani group firms

Sebi issued show-cause notices to six Adani Group firms, including Adani ...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
S.S. Rajamouli and Disney+ Hotstar brings the untold story of

S.S. Rajamouli and Disney+ Hotstar brings the untold story of

Airtel Xstream Play strengthens regional content library, part

Airtel Xstream Play strengthens regional content library, part

Bharti Airtel (“Airtel”), one of India’s leading telecommunications

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

The Enforcement Directorate (ED) has seized businessman Raj Kundra's pro
 MOVERS & SHAKERS  Placeholder image
New Relic names Katrina Wong as CMO

New Relic names Katrina Wong as CMO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech has announced the appointment of Subham Banerjee as its Ch
Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

The cloud-native identity and governance platform solutions provider Saviy
 OPEN YOUR EYES  Placeholder image

It is time to protect your critical business priorities from attackers

India Celebrates MSME Day, Focusing Business Continuity During COVID-19 Outbreak
Digitalization and cyberattacks go hand in hand
No road block for the cyber espionage cases
A question arises on how would be the future of the workplace?
 INTERVIEWS  Placeholder image
D-Link in pursuit of building a more connected, smarter and co

D-Link in pursuit of building a more connected, smarter and co

Technology and a robust partner network help position Allied T

Technology and a robust partner network help position Allied T

Allied Telesis in India has a strong and growing team that is very customer
IceWarp positioning itself as a disruptor in the Email and col

IceWarp positioning itself as a disruptor in the Email and col

Post pandemic, the digital evolution has evolved. With most organizations a
 HOT PICK  Placeholder image
Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

COLORFUL rolls out an array of gaming laptops

COLORFUL rolls out an array of gaming laptops

COLORFUL launched its incredible series of COLORFUL EVOL P15 gaming laptop
Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies has launched the broadest portfolio of commercial AI lap
 MAKE IN INDIA BRANDS   Placeholder image
IBALL WORLDWIDE PVT. LTD.

IBALL WORLDWIDE PVT. LTD.


TAC SECURITY SOLUTIONS 

TAC SECURITY SOLUTIONS 


DELL TECHNOLOGIES INDIA PVT. LTD.  

DELL TECHNOLOGIES INDIA PVT. LTD.  


JUVAS SOLUTIONS PVT. LTD.  

JUVAS SOLUTIONS PVT. LTD.  


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

Technology is opening ways to expand business growth

To increase efficiency and productivity while cutt...

Technology has been at the forefront of evolution propelling to ease life

Apart from cost vs benefits analysis, we always lo...

Harnessing the power of IIoT based offerings

What IIoT is certainly not- it is not about replac...

 ICONS OF INDIA  Placeholder image

Technology Icons Of India 2023: Sunil Vachani

Sunil Vachani is the founder and chairman of India-listed Dixon Techno...

Technology Icons Of India 2023: Natarajan Chandrasekaran

Natarajan Chandrasekaran is the Chairman of the Board of Tata Sons, th...

Technology Icons Of India 2023: Rajeev Chandrasekhar

Rajeev Chandrasekhar is the Union Minister of State for Electronics an...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Transforming Distribution in the digital era!

In today’s dynamic marketplace, coupled with the expanded scope and complexi...

Customer Satisfaction is Sound Solutions’ Foundation for Success and Resilience

India is a very big market with a variety of segments like SME, Corporate, Gov...

PSSPL strategically Investing in Skills, partnership,and products to cater to its Customers and IT Demands

PSSPL has been working with its customers who are early in using new technolog...

 PSU  Placeholder image

TCIL continues to strengthen India with its technology expertise  

TCIL undertakes consultancy & turnkey projects in the field of Telecom...

Aadhaar: Architecting the World's Largest Biometric Identity System 

The Unique Identification Authority of India (UIDAI) is a statutory au...

NIC bridging the digital divide and supporting government in eGovernance  

The National Informatics Centre (NIC) is an Indian government departme...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2023 : Bharti Airtel Limited

Founded as a manufacturer of bicycle parts in 1976 by Sunil Bharti Mittal, Bha...

Most Trusted Brands 2023 : Ingram Micro India Pvt. Ltd.

Ingram Micro helps businesses fully realize the promise of technology. Ingram ...

Most Trusted Brands 2023 : Redington India Ltd.

Redington is a US$8.4 billion technology solution provider with a network of ...

 Value-Added Distribution  Value-Added Distribution

ACCERON INFOSOL PVT. LTD.

It is a leading value added distributor in the IT security space and h...

SAVEX TECHNOLOGIES PVT. LTD.

Savex Technologies is the 3rd largest Information & Communication Tec...

IVALUE INFOSOLUTIONS PVT. LTD.

: iValue Info Solutions is a value added distributor, provides solutio...

 ITFORUM 2024  
 WIITF 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 EMINENT CIO's OF INDIA   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
 TECHNOLOGY DISRUPTION Placeholder image

ISB Executive Education collaborates with Eruditus to upskill professionals

ISB Executive Education collaborates with Eruditus to upskill professionals

Oracle supports healthcare organizations with new capabilities

Oracle supports healthcare organizations with new capabilities

HCLTech and ServiceNow to deliver GenAI-led solutions

HCLTech and ServiceNow to deliver GenAI-led solutions

Storage is a key component of digital transformation

Storage is a key component of digital transformation

 UNICORNS REVOLUTIONISING Placeholder image

ATHER ENERGY PRIVATE LIMITED

ATHER ENERGY PRIVATE LIMITED

Curefit Healthcare Private Limited

Curefit Healthcare Private Limited

Big Tree Entertainment Private Limited

Big Tree Entertainment Private Limited

Dreamplug Technologies Private Limited

Dreamplug Technologies Private Limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW