Skip to content
Go to Home Page
News

What we know about the data breach targeting frequent flyer info

March 05, 2021
3 min read
Woman using laptop in living room
What we know about the data breach targeting frequent flyer info
The cards we feature here are from partners who compensate us when you are approved through our site, and this may impact how or where these products appear. We don’t cover all available credit cards, but our analysis, reviews, and opinions are entirely from our editorial team. Terms apply to the offers listed on this page. Please view our advertising policy and product review methodology for more information.

A "highly sophisticated" cyber attack targeting frequent flyer data has affected at least 11 airlines around the globe, including U.S. carriers American and United. The Feb. 24 incident targeted SITA, a technology provider that helps process communications and passenger information across numerous carriers.

Fortunately for customers, the hackers were not successful in stealing critical information like customer passwords or credit card information, according to both SITA and the affected airlines. Instead, the breach appears to have been limited to data such as frequent flyer account numbers and status levels.

"We recognize that the COVID-19 pandemic has raised concerns about security threats, and, at the same time, cyber-criminals have become more sophisticated and active," SITA said in a Friday statement acknowledging the incident, which it said "remains under continued investigation."

"This was a highly sophisticated attack," the company added.

Affected airlines also have begun reaching out to customers. Despite early reports that the breach may have affected only carriers of the Star Alliance frequent flyer group, other airlines have also been exposed.

In the U.S., both United and American had started emailing customers on Friday afternoon.

Daily Newsletter
Reward your inbox with the TPG Daily newsletter
Join over 700,000 readers for breaking news, in-depth guides and exclusive deals from TPG’s experts

"It's our understanding that the only information potentially accessed were customer names, MileagePlus numbers and Star Alliance statuses (Silver or Gold)," United said in an email to its members. "Importantly, no other personal information or passwords were exposed that would allow anyone to access your MileagePlus account."

American sent out a similar email to customers.

Cyber secure: How to protect yourself against reward program data breaches

Neither are customers of SITA's passenger service system, though their frequent-flyer information seems to have been exposed via partners that are. The system can, among other things, allow airlines to share tier status information with each other so that airlines can offer elite benefits to eligible customers of their partners.

At least nine other carriers were affected, according to media reports and emails sent by carriers. They include Cathay Pacific, Finnair, Japan Airlines, Jeju Air of Korea, Lufthansa, Malaysia Airlines, SAS and Singapore Airlines. Delta Air Lines told TPG that it had no indication it was exposed to the breach.

Still, Skift estimates that "more than two million travelers enrolled in the frequent flier programs (of the affected) airlines had some of their data hacked."

While SITA and the airlines say no sensitive information was taken, some carriers suggested customers could change their passwords "out of an abundance of caution."

Featured image by JOHNER IMAGES/GETTY IMAGES
Editorial disclaimer: Opinions expressed here are the author’s alone, not those of any bank, credit card issuer, airline or hotel chain, and have not been reviewed, approved or otherwise endorsed by any of these entities.

TPG featured card

Delta SkyMiles® Reserve American Express Card

3.5 / 5
Go to review
Apply for Delta SkyMiles® Reserve American Express Card
Apply now
for Delta SkyMiles® Reserve American Express Card

at American Express's secure site

Terms & restrictions apply. See rates & fees.

Rewards rate
3XEarn 3X Miles on Delta purchases.
1XEarn 1X Miles on all other eligible purchases.
Intro offer
Open Intro bonus
Earn up to 125,000 Bonus Miles
Annual fee
$650
Regular APR
19.49%-28.49% Variable
Recommended credit
Open Credit score description
Excellent to Good

Pros

  • Delta SkyClub access when flying Delta
  • Annual companion ticket for travel on Delta (upon renewal)
  • Ability to earn MQDs through spending
  • Various statement credits for eligible purchases

Cons

  • Steep annual fee of $650
  • Other Delta cobranded cards offer superior earning categories
  • Earn 100,000 Bonus Miles after you spend $6,000 or more in purchases with your new Card within the first 6 months of Card Membership and an additional 25,000 bonus miles after you make an additional $3,000 in purchases on the Card within your first 6 months, starting from the date that your account is opened. Offer Ends 04/01/2026.
  • Delta SkyMiles® Reserve American Express Card Members receive 15 Visits per Medallion® Year to the Delta Sky Club® when flying Delta and can unlock an unlimited number of Visits after spending $75,000 in purchases on your Card in a calendar year. Plus, you’ll receive four One-Time Guest Passes each Medallion Year so you can share the experience with family and friends when traveling Delta together.
  • Enjoy complimentary access to The Centurion® Lounge in the U.S. and select international locations (as set forth on the Centurion Lounge Website), Sidecar by The Centurion® Lounge in the U.S. (see the Centurion Lounge Website for more information on Sidecar by The Centurion® Lounge availability), and Escape Lounges when flying on a Delta flight booked with the Delta SkyMiles® Reserve American Express Card. § To access Sidecar by The Centurion® Lounge, Card Members must arrive within 90 minutes of their departing flight (including layovers). To access The Centurion® Lounge, Card Members must arrive within 3 hours of their departing flight. Effective July 8, 2026, during a layover, Card Members must arrive within 5 hours of the connecting flight.
  • Receive $2,500 Medallion® Qualification Dollars with MQD Headstart each Medallion Qualification Year and earn $1 MQD for each $10 in purchases on your Delta SkyMiles® Reserve American Express Card with MQD Boost to get closer to Status next Medallion Year.
  • Enjoy a Companion Certificate on a Delta First, Delta Comfort, or Delta Main round-trip flight to select destinations each year after renewal of your Card. The Companion Certificate requires payment of government-imposed taxes and fees of between $22 and $250 (for itineraries with up to four flight segments). Baggage charges and other restrictions apply. Delta Basic experiences are not eligible for this benefit.
  • $240 Resy Credit: When you use your Delta SkyMiles® Reserve American Express Card for eligible purchases with U.S. Resy restaurants, you can earn up to $20 each month in statement credits. Enrollment required.
  • $120 Rideshare Credit: Earn up to $10 back in statement credits each month after you use your Delta SkyMiles® Reserve American Express Card to pay for U.S. rideshare purchases with select providers. Enrollment required.
  • Delta SkyMiles® Reserve American Express Card Members get 15% off when using miles to book Award Travel on Delta flights through delta.com and the Fly Delta app. Discount not applicable to partner-operated flights or to taxes and fees.
  • With your Delta SkyMiles® Reserve American Express Card, receive upgrade priority over others with the same Medallion tier, product and fare experience purchased, and Million Miler milestone when you fly with Delta.
  • Earn 3X Miles on Delta purchases and earn 1X Miles on all other eligible purchases.
  • No Foreign Transaction Fees. Enjoy international travel without additional fees on purchases made abroad.
  • $650 Annual Fee.
  • Apply with confidence. Know if you're approved for a Card with no impact to your credit score. If you're approved and you choose to accept this Card, your credit score may be impacted.
  • Terms Apply.
  • See Rates & Fees