UK travel association reports data breachReprints
A major British travel organization on Wednesday reported a cyber breach that that impacts about 43,000 individuals, including about 1,000 whose personal information may have been accessed.
London-based ABTA Ltd. said in a statement that on Feb. 27, an “infiltrator” gained access to data provided by its members and some of its members’ customers.
ABTA, which is the United Kingdom’s largest travel association, represents travel agents and tour operators, according to its website.
The organization said in its statements that the unauthorized access may have affected about 43,00 individuals. The data accessed includes 1,000 files that have personal identity information about members’ customers that have been uploaded since Jan. 11. Around 650 may include personal identity information of ABTA members, it said.
The vast majority of the 43,000 people impacted by the breach are those who have registered on its website, abta.com, with email addresses and encrypted passwords, or have filled in an online form with basic contact details, which it said “are types of data at a very low exposure risk to identity theft or online fraud.”
ABTA said its web server is managed through a third-party web developer and hosting company.
The organization said the vulnerability has now been fixed, and it is not aware of any of the information shared being accessed.