Download Certificate- Most Promising Partner | ECIO | Most Admired Brand | Most Trusted Company

141 Airlines Booking System Goes Awry Worldwide


By MYBRANDBOOK


141 Airlines Booking System Goes Awry Worldwide

 

There is a critical vulnerability found in online flight booking system, with this almost half of the fight travellers around the world were found exposed to a critical security vulnerability, that allowed remote hackers to access and modify their travel details and even claim their frequent flyer miles.

 

A Israeli network security researcher Noam Rotem discovered the vulnerability when he booked a flight on the Israeli airline ELAL, successful exploitation of which just required victim’s PNR (Passenger Name Record) number.

 

Hackers are really smart enough to enter into the flight booking system, which is developed by Amadeus, which is widely used by nearly 141 international airlines, including United Airlines, Lufthansa and Air Canada. After booking a flight with ELAL, the traveler receives a PNR number and a unique link that allows customers to check their booking status and related information associated with that PNR.



Rotem found that merely by changing the value of the "RULE_SOURCE_1_ID" parameter on that link to someone else's PNR number would display personal and booking-related information from the account associated with that customer.

 

Using disclosed information, i.e. booking ID and last name of the customer, an attacker can simply access the victim's account on ELAL's customer portal and "make changes, claim frequent flyer miles to a personal account, assign seats and meals, and update the customer's email and phone number, which could then be used to cancel/change flight reservation via customer service. "The report says, the vulnerability could have affected hundreds of millions of travelers.

 

Amadeus has able to fix the issue, and the Rotem's script can no longer identify active PNRs as demonstrated in the above video.


In a statement Amadeus says , "At Amadeus, we give security the highest priority and are constantly monitoring and updating our systems. Our technical teams took immediate action, and we can now confirm that the issue is solved."
 BREAKING NEWS  BREAKING NEWS
Cisco announces AI-native secure Wi-Fi 7 for future-ready employe

Cisco announces AI-native secure Wi-Fi 7 for future-ready employe...

Announcing a major leap in wireless technology, Cisco has launched its Wi...

The BSE benchmark Sensex tumbled over 800 points, leaving investo

The BSE benchmark Sensex tumbled over 800 points, leaving investo...

The BSE benchmark Sensex recently experienced a significant drop, tumblin...

North Korean GPS Interference Disrupts Air Traffic

North Korean GPS Interference Disrupts Air Traffic...

South Korea's military has publicly accused North Korea of disrupting GP...

US ordered TSMC to halt chip shipments to China

US ordered TSMC to halt chip shipments to China...

TSMC has had regular discussions with the government on export control issu...

 TECHNO TRENDS  Placeholder image
Nazara and ONDC set to transform in-game monetization with ‘

Nazara and ONDC set to transform in-game monetization with ‘

Nazara Technologies has teamed up with the Open Network for Digital Comme...

Jio Platforms and NICSI to offer cloud services to government

Jio Platforms and NICSI to offer cloud services to government

In a collaborative initiative, the National Informatics Centre Services In...

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

A syndicate led by Rail Vikas Nigam Limited (abbreviated as RVNL), along wi...

Pinterest tracks users without consent, alleges complaint

Pinterest tracks users without consent, alleges complaint

A recent complaint alleges that Pinterest, the popular image-sharing platf...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
Eloelo teams up with Elvish Yadav for India's biggest digital

Eloelo teams up with Elvish Yadav for India's biggest digital

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix has introduced a new “Moments” feature on its mobile app, whic
Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez has partnered with American YouTuber Mr. Beast to b
 MOVERS & SHAKERS  Placeholder image
Kamal Nath quits SIFY Technologies

Kamal Nath quits SIFY Technologies

Visa elevates Rishi Chhabra as new Country Manager for India

Visa elevates Rishi Chhabra as new Country Manager for India

Rishi holds a Master’s in Industrial Engineering from The Ohio State Univ
Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys continues to deepen its investment in the APAC region. Earlier this
 OPEN YOUR EYES  Placeholder image

Artificial Intelligence and Cyber-security are key pillars of Digitization
COVID-19 Brings Opportunity For Businesses To Tide Over The Current Crisis
Changing Dynamics Of Cybersecurity In The Age of Coronavirus
Can we could visualise a new world post COVID -19
The Changing Face of Cybercrime Amidst Global Pandemic
 INTERVIEWS  Placeholder image
In India, 88% of Indian business leaders are planning to inves

In India, 88% of Indian business leaders are planning to inves

Alcatel-Lucent Enterprise Carrying a 100 year legacy ahead

Alcatel-Lucent Enterprise Carrying a 100 year legacy ahead

A good amount of R&D works and global support services are operated out of

Bolstering its commitment to help build a truly self-reliant B

Bolstering its commitment to help build a truly self-reliant B

CP PLUS is dedicated to spreading a sense of security to every corner of In
 HOT PICK  Placeholder image
BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall announced today the launch of the TZ80, a groundbreaking securit
Gigabyte X3D Turbo: A Gaming Revolution

Gigabyte X3D Turbo: A Gaming Revolution

GIGABYTE X3D Turbo Mode is a cutting-edge feature that unifies cores distr
 MAKE IN INDIA BRANDS   Placeholder image
MICROTEK INTERNATIONAL PVT. LTD.

MICROTEK INTERNATIONAL PVT. LTD.


LENOVO INDIA PVT. LTD.

LENOVO INDIA PVT. LTD.


SAMRIDDHI AUTOMATIONS PVT. LTD.

SAMRIDDHI AUTOMATIONS PVT. LTD.


ZOHO CORPORATION PVT. LTD.

ZOHO CORPORATION PVT. LTD.


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

AI TO IMPROVE INSIGHTS THROUGH AUGMENTED ANALYTICS, WHILE EDGE COMPUTING TO ALLOW REAL-TIME PROCESSING

For the fiscal year 2024-25, our organization has ...

STRATEGIC FRAMEWORK FOR SUSTAINABLE BUSINESS EXPANSION IS PATHWAY TO PROSPERITY

Accelerate the adoption of AI and machine learning...

AI SYSTEMS ARE ENABLING A SEISMIC SHIFT IN THE WORLD OF CYBERSECURITY

AI’s analytical prowess enables it to analyze an...

 ICONS OF INDIA  Placeholder image

ICONS OF INDIA : RAJIV MEMANI

As Chair of the EY Global Emerging Markets Committee, Rajiv connects e...

Icons Of India : MADHABI PURI BUCH

Madhabi Puri Buch is the first-female chairperson of India’s markets...

Icons Of India : NANDAN NILEKANI

Nandan Nilekani is the Co-Founder and Chairman of Infosys Technologies...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Empowering clients with innovative solutions to thrive in evolving digital landscape

Hitachi Systems India employs a multifaceted approach to assess brand awarenes...

Redefining The Future Of Telecom and Networking Industry with Make in India Initiative

Syrotech Networks has seen a notable uptick in customer acceptance of digital ...

Unwavering Commitment & Communication helping to thrive in the evolving digital landscape

We leverage a comprehensive market intelligence framework and an advanced CRM ...

 PSU  Placeholder image

HPCL - Hindustan Petroleum Corporation Ltd.  

HPCL is an integrated oil and gas company involved in refining, market...

BSE - Bombay Stock Exchange  

The Bombay Stock Exchange (BSE) is one of India’s largest and oldest...

GeM - Government e Marketplace

GeM is to facilitate the procurement of goods and services by various ...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2024 : Redington Ltd. 

Redington positions itself as a bridge between global technology brands and re...

Most Trusted Brands 2024: IBM CORPORATION

IBM’s strength lies in its ability to consistently innovate and adapt to the...

Most Trusted Brands 2024 : ACCENTURE PLC

Accenture is renowned for its commitment to technological innovation. It inves...

 Global Indian industry   Value-Added Distribution

Indian Tech Talent Excelling The Tech World - Aman Bhutani, CEO, GoDaddy

Aman Bhutani, the self-taught techie and CEO of GoDaddy, oversees a co...

Indian Tech Talent Excelling The Tech World - Aneel Bhusri, CEO, Workday

Aneel Bhusri, Co-Founder and Executive Chair at Workday, has been a le...

Indian Tech Talent Excelling The Tech World - RAVI KUMAR S, CEO- Cognizant

Ravi Kumar S, appointed as CEO of Cognizant in January 2023, sets the ...

 STARNITE AWARDS 2024  
 ITFORUM 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 IMAGE GALLERY   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
Brandbook Brandbook
 TECHNOLOGY DISRUPTION Placeholder image

Dell Technologies Expands AI Offerings to Accelerate Secure Generative AI Initiatives

Dell Technologies Expands AI Offerings to Accelerate Secure Generative AI Initiatives

Airtel 5G Plus goes live in Shimla

Airtel 5G Plus goes live in Shimla

Rising Unicorns In India, brings ideas to ideate

Rising Unicorns In India, brings ideas to ideate

Indian semiconductor Industry to reach $55 bn by 2026

Indian semiconductor Industry to reach $55 bn by 2026

 UNICORNS REVOLUTIONISING Placeholder image

Droom Technology Limited

Droom Technology Limited

CUREFIT HEALTHCARE PRIVATE LIMITED

CUREFIT HEALTHCARE PRIVATE LIMITED

InCred Financial Services Limited

InCred Financial Services Limited

Fashnear Technologies Private Limited

Fashnear Technologies Private Limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW