EUROPE AFRICA AMERICAS APAC ME


Thomas Cook admits data breach

Thursday, 10 Jul, 2018 0

Thomas Cook has suffered a data breach which exposed the names, email addresses, and flight details of customers.

Blogger Roy Solberg, a Norwegian security researcher accessed the customer data through vulnerabilities, which he has since reported, according to Sky News.

Thomas Cook said the gaps in its security have since been plugged. It said Solberg was the only person to exploit the security issue and that fewer than 100 bookings were accessed.

It is understood that Thomas Cook decided during an internal assessment that there was no need to report the incident to the data protection authority due to the nature of the data that was accessed.

However, Solberg has claimed in his blog that the details of tens of thousands of bookings dating back to 2013 were available to hackers. He said he the breach had occurred on Thomas Cook’s Norwegian site airshoppen, where customers can buy upgrades and duty-free items.

In his blog post, Solberg said: "I never download a lot of data as I don’t want anyone to question my motives, but I do like to get an idea of the scope of a data leak, so I did a few tests to see if I could see how many bookings this was affecting."

In a statement, Thomas Cook told Sky News: "We take any breach of our customer data extremely seriously.

"After being alerted to this unauthorised access to our online duty free shopping website in Norway, we closed the loophole and took responsible actions in line with the law.

"Based upon the evidence we have, and the limited volume and nature of the data that was accessed, our assessment is that this was not an incident which is required to be reported to the authorities.

"For the same reasons we have not contacted the customers affected."

Thomas Cook added: "We regularly test our systems using third party agents and since becoming aware of this incident we have taken further steps across our IT systems to ensure that we don’t have a similar loophole elsewhere."

It said no UK customers were affected by the breach. A spokesman confirmed additional security measures had been put in place.

A spokesperson for the UK’s data watchdog, the Information Commissioner’s Office (ICO), told Sky News: "An organisation must assess if a breach should be reported to the ICO. However, this story does raise some potential concerns and we will be making further enquiries.



 

below social share icons
profileimage

Linsey McNeill

Editor Linsey McNeill has been writing about travel for more than three decades. Bylines include The Times, Telegraph, Observer, Guardian and Which? plus the South China Morning Post. She also shares insider tips on thetraveljournalist.co.uk



Via Croatia

Via Croatia is a concierge-type, full-service luxury DMC working exclusively with travel agents and luxury tour operators. With 20 years of experience and local partne...

AXA Assistance

AXA Assistance specializes in best-in-class cost containment, health and travel services. Over 60 years of experience combined with a US and international network of p...

Jersey

This is Jersey. An island shaped by the sea where some of the most astonishing tides in the world circle the coast and feed the land. An island that’s small on size, b...

Regent Seven Seas Cruises

Celebrating its 30-year anniversary in 2022, Regent Seven Seas Cruises® offers guests An Unrivaled Experience® with every luxury included. Carrying no more than 750 gu...

Florida Keys & Key West

The Florida Keys and Key West is a 126 mile long string of Islands connected to South Florida by the scenic Overseas Highway; a road that suspends the traveller in a p...

Louisiana Travel

A state like no other. A place known for togetherness, celebration and happiness. In Louisiana, we call it “joie de vivre” – joy of life. It’s a joy you’ll find when y...

Riverside Luxury Cruises

River cruising is a treat for the senses, allowing you to see, touch, feel and experience the world like never before. Sit on the intimate, open-air upper deck as you ...

G Adventures

We are a small-group adventure travel operator offering more than 750 tours in 100 countries, on all seven continents. Our award-winning trips support local communitie...

Travel Outlook

Travel Outlook, the premier hotel call center™ Travel Outlook is an innovative, custom off-site central reservations office (CRO) service that serves as either a prima...

Wonderful Indonesia

Wonderful Indonesia Indonesia is a country blessed with countless wonders. What makes this country unique is its diverse culture and magnificent nature, which should b...

Saint Lucia

SAINT LUCIA IS NO ORDINARY ISLAND Equal parts beauty and mystique, Saint Lucia captivates anyone who sets foot on her coastline. Always evocative, she welcomes visitor...

Centara Hotels & Resorts

Centara Hotels & Resorts is Thailand’s leading hotel operator. Its 93 properties span all major Thai destinations plus the Maldives, Sri Lanka, Vietnam, Laos, Myan...

Princess Hotels & Resorts

Princess Hotels & Resorts is a hotel chain specialising in holiday and urban hotels located in first class tourist destinations, a choice which enjoys the favour, ...

Sabah Tourism

Some describe it as a natural playground. Some say, it’s simply unique as it offers a great array of travel options coast to coast. Some say, the hospitality of ...

Eventsquid

We understand the importance of personal touch We do things a bit differently at Eventsquid. We know that we could hide our sales telephone number from the website — b...

Punta Gorda / Englewood Beach

Discover Punta Gorda/Englewood Beach, also known as the Charlotte Harbor Gulf Island Coast. This natural wonderland is nestled in the heart of southwest Florida with k...

Israel

From the Tel Aviv beach scene to the shores of the Dead Sea, Israel layers diverse cultures, outdoor adventures, and religious heritage onto a desert backdrop. Explori...

Jamaica

The Jamaica Tourist Board (JTB), founded in 1955, is Jamaica’s national tourism agency based in the capital city of Kingston. JTB offices are also located in Montego B...

EU free cabin bags: Will it lead to increased airfares
Most Read
mostcomentedimg Germany new European Entry/Exit System limited to a single airport on October 12, 2025
advisor_img

Airlines suspend Madagascar services following unrest and army revolt
advisor_img

Qatar Airways offers flexible payment options for European travellers
advisor_img

TAP Air Portugal to operate 29 flights due to strike on December 11
advisor_img

Air Mauritius reduces frequencies to Europe and Asia for the holiday season
advisor_img

Airbnb eyes a loyalty program but details remain under wraps

Vegas’s Billion-Dollar Secrets – What They Don’t Want Tourists to Know

Visit Florida’s New CEO Bryan Griffin Shares His Vision for State Tourism with Graham

Chicago’s Tourism Renaissance: Graham Interviews Kristin Reynolds of Choose Chicago

Graham Talks with Cassandra McCauley of MMGY NextFactor About the Latest Industry Research

Destination International’s Andreas Weissenborn: Research, Advocacy, and Destination Impact

Graham and Don Welsh Discuss the Success of Destinations International’s Annual Conference

Graham and CEO Andre Kiwitz on Ventura Travel’s UK Move and Recruitment for the Role

Brett Laiken and Graham Discuss Florida’s Tourism Momentum and Global Appeal

Graham and Elliot Ferguson on Positioning DC as a Cultural and Inclusive Global Destination

Graham Talks to Fraser Last About His England-to-Ireland Trek for Mental Health Awareness

Kathy Nelson Tells Graham About the Honour of Hosting the World Cup and Kansas City’s Future

Graham McKenzie on Sir Richie Richardson’s Dual Passion for Golf and His Homeland, Antigua
TRAINING & COMPETITION
topnews
Holland America Line teams up ...
topnews
Central Florida Insider: Get t...
topnews
Crystal Launches Sell Three, S...
topnews
Introducing Inclusive Collecti...
topnews
Unlock Exclusive Benefits, Red...
topnews
Mālama Maui By Visiting Mindf...
Skip to toolbar
Clearing CSS/JS assets' cache... Please wait until this notice disappears...
Updating... Please wait...