You have turned off cookies for this site. Please enable cookies for a better browsing experience.
Please upgrade your web browser
You are using an unsupported browser. See our supported browsers to enjoy the very best experience of our site.

Data security event

Latest update: 25 Oct 2018 10:00 HKT (GMT+8)

As part of our ongoing IT security processes, we have discovered unauthorised access to some of our passenger data.  Upon discovery, we took immediate action to contain the event, and further strengthen our IT security measures.

This website explains what to do if you believe you may have been affected and how we are helping affected passengers.

If you are located outside the US, please click here.  

If you are a US resident, click here.

Please note:

We are aware that attempted phishing is taking place, and would like to remind people that emails related to this data security event will only be sent from infosecurity@cathaypacific.com.  If you are setting up optional ID monitoring, the website address to enter your activation code is https://www.globalidworks.com/identity1.  Please do not click on any variations of this link.

Official emails relating to this data security event will be sent from an address with the format infosecurity@cathaypacific.com.

With regard to this data security event, we will never request your personal or financial information, and we will never ask for your password.

If you are concerned about an email, we recommend that you don’t click on any links, open any attachments or reply to it.

What to do if you believe you have been affected

If you are a member of the Marco Polo Club, Asia Miles or a Registered Account holder and if you have been affected by this event, we will contact you individually in the coming days.  We are very sorry for the concern that this may cause you.

If you believe you may have been affected and you haven’t heard from us already, please register your enquiry with us.

The following personal data was accessed: passenger name; nationality; date of birth; phone number; email; address; passport number; identity card number; frequent flyer programme membership number; customer service remarks and historical travel information.

In addition, 403 expired credit card numbers were accessed.  27 credit card numbers with no CVV were accessed.

The combination of data accessed varies for each affected passenger.

No-one’s travel or loyalty profile was accessed in full, and no passwords were compromised. 

If you are an affected member of the Marco Polo Club, Asia Miles or a Registered Account holder, we will contact you individually in the coming days. In that communication, we will tell you which specific types of personal information about you have been accessed.

If you haven’t been contacted already, you can register your enquiry.  We will then check whether any of your personal information was accessed and get in touch with you by email to confirm.

We are very sorry for any concern that this may cause you.

We have no evidence that any personal information has been misused. However, in an abundance of caution, we have taken the decision to notify everyone we believe may have been affected.

Where possible, we are offering ID monitoring services to affected passengers. This service monitors if your personal data may be available on public websites, chat rooms, blogs, and non-public places on the internet where data can be compromised such as dark web sites.

If you are an affected member of the Marco Polo Club, Asia Miles or a Registered Account holder, we will contact you individually with relevant information.

Although no-one’s travel or loyalty profile was accessed in full and no passwords were compromised, as best practice, we recommend that you consider:

  • Changing your passwords regularly
  • Checking for any suspicious activity
  • Being vigilant against phishing or other attempted scams

 

You can contact our dedicated call centre from Monday to Sunday, 08.00am – 10.00pm (Hong Kong time) at the toll-free number below:

 

Country / Region Number
Hong Kong 800 933 287

403 expired credit card numbers and 27 credit card numbers with no CVV were accessed, and we are contacting individually those passengers whose credit card information was accessed.  We have no evidence that any personal information has been misused.

We have no evidence that any personal information has been misused.

No-one’s loyalty profile was accessed in full and no passwords were compromised.

If you have detected irregular activity in your Marco Polo Club or Asia Miles account, please contact member services of Marco Polo Club or Asia Miles.

In an abundance of caution and as best practice, we recommend you to

  • Change your passwords regularly
  • Check for any suspicious activity and
  • Stay vigilant against phishing or other attempted scams

If your credit card information was accessed in this event, you will be contacted directly.

If you have been contacted directly, we recommend you contact your bank or credit card company to seek their advice.

If you believe you have been a victim of financial fraud, as always, you should contact your bank or your credit card company.

Although no-one’s travel or loyalty profile was accessed in full and no passwords were compromised, as best practice, we recommend that you consider:

  • Changing your passwords regularly
  • Checking for any suspicious activity
  • Being vigilant against phishing or other attempted scams

Where possible, we are offering ID monitoring services to affected passengers. This service monitors if your personal data may be available on public websites, chat rooms, blogs, and non-public places on the internet where data can be compromised such as dark web sites.

If you are an affected member of the Marco Polo Club, Asia Miles or a Registered User, we will contact you individually with relevant information.

We have no evidence that any personal information has been misused. However, in an abundance of caution, we have taken the decision to notify everyone we believe may have been affected.

If you are an affected member of the Marco Polo Club, Asia Miles or a Registered Account holder, we will contact you individually with relevant information in the coming days.

Where possible, we are offering ID monitoring services to affected passengers.  This service monitors if your personal data may be available on public websites, chat rooms, blogs, and non-public places on the internet where data can be compromised such as dark web sites.

No. The IT systems affected are totally separate from our reservation and flight operations systems. You can check your booking with us on cathaypacific.com or contact your travel agent.

The safety and security of our passengers remains our top priority, and we want to reassure you that we took and continue to take measures to enhance our IT security.

The event impacted only a very small number of valid credit card numbers with no CVV, and the IT systems affected were totally separate from our reservation systems.

If your credit card information was accessed in this event, you will be contacted directly.

If you have been contacted directly, we recommend you contact your bank or credit card company to seek their advice.

As best practice, we also recommend that you check for any suspicious activity on a regular basis.

If your credit card information was accessed in this event, you will be contacted directly.

If you have been contacted directly, we recommend you contact your bank or credit card company to seek their advice.

The event impacted only a very small number of valid credit card numbers with no CVV.

We have no evidence that any personal information has been misused.

If your credit card information was accessed in this event, you will be contacted directly.

If you have been contacted directly, we recommend you contact your bank or credit card company to seek their advice.

Where possible, we are offering ID monitoring services to affected passengers, and we recommend that you enrol in these services if available.

If you are an affected member of the Marco Polo Club, Asia Miles or a Registered Account holder, we will contact you individually with relevant information.

  • This notice is written in English language and may be translated into other languages. In the event of any inconsistency between the English version and the translated version of this notice, the English version shall prevail.
  • Asia Miles is owned by, and provided to members by Cathay Pacific Airways Limited, and is managed and operated by Asia Miles Limited, a wholly owned subsidiary of Cathay Pacific Airways Limited, as an agent of Cathay Pacific Airways Limited.
  • Hong Kong Dragon Airlines Limited is a wholly owned subsidiary of Cathay Pacific Airways Limited and Cathay Pacific Airways Limited manages and provides IT support services to Hong Kong Dragon Airlines Limited.

 

Language - English     繁體中文     简体中文     日本語     한국어     Deutsch     Español     Français     Italiano     Nederlands     tiếng Việt     Bahasa Indonesia     ArabicOpen a new window      ภาษาไทย