![]() ![]() Rotem also demonstrated that using the booking information (i.e. The researcher analyzed the link and discovered that changing the value of the “RULE_SOURCE_1_ID” parameter in the link using the PNR number of other users would see the booking information associated with their accounts. Once a customer has booked a flight with ELAL, he will receive a PNR number and a unique link that could be used to check the booking and data associated with the PNR. “The same breach was then discovered to include 44% of the international carriers market, potentially affecting tens of millions of travelers.” While booking a flight with Israeli national carrier ELAL, he came across a significant security breach that allows anyone to access and change private information on flight bookings.” reads a post published by the expert. “Hacker and Activist Noam Rotem, working with Safety Detective research lab , was shocked when he recently discovered a major vulnerability affecting nearly half of all airlines worldwide. The attacker just needs to know the victim’s PNR (Passenger Name Record) number to exploit the vulnerability. ![]() It has been estimated that the vulnerability could impact almost half of the fight travelers of 141 airlines around the world, including United Airlines, Lufthansa and Air Canada. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |