Security flaw at SpiceJet affects data of 1.2 million passengers

NEW DELHI: SpiceJet, India’s privately-owned airline, has faced a security breach. According to a report by TechChrunch, a security flaw has exposed the private data of 1.2 million passengers, including the flight information.
The information leaked is part of an unencrypted database file after a security researcher gained access to the SpiceJet system. SpiceJet has released a statement about the hack but not much information about it is available right now.
The report further added that breach was done by a security researcher but the publication has not revealed the name. The report adds that the researcher got access to one of SpiceJet’s systems by brute-forcing means by using an easily guessable password. He then noticed that the system contained some unencrypted backup files with private details of over 1.2 million passengers. The information included name, phone number, email address, date of birth and flight information.