A data breach at Asiana Airlines exposed the personal information of about 10,000 employees.
Asiana Airlines said on the 25th that around 6:32 p.m. on the 24th it confirmed signs that its in-house intranet system had been attacked from outside and that personal information of about 10,000 employees had been leaked. The leaked data includes employee numbers, names, phone numbers, departments, job titles, and email addresses. However, Asiana Airlines said there was no leakage of customer information.
Asiana Airlines said it took emergency measures, including blocking remote access and convening a response team, after confirming abnormal access to overseas regional servers and a data leak. The notice to employees about the data leak was made around 2:30 p.m. on the 25th. It then reported the incident to relevant agencies, including the Korea Internet & Security Agency (KISA), at around 3:07 p.m.
An Asiana Airlines official said, "As soon as we recognized the personal data leak, we blocked the illegal access route, notified employees and relevant agencies, including the Korea Internet & Security Agency (KISA), and are implementing measures such as changing the system administrator account password."