Delta locks some customer accounts over security concern: What to know
Share this @internewscast.com

HARRISBURG, Pa. (WHTM) — If you have a flight with Delta Air Lines coming up, it might be a good idea to ensure you can access your frequent flier account before heading to the airport.

The airline has restricted access to some customers’ frequent flier accounts due to cybersecurity concerns identified earlier in the week and did not immediately inform those customers. This information was given by two different reservation agents on separate occasions on Saturday to an affected customer, a reporter for Nexstar’s WHTM.

The possible security breach occurred last week, according to the details provided. The reporter encountered the issue on Saturday while attempting to log into the airline’s system to check in for a flight planned for Sunday. The login was unsuccessful, as was an attempt to reset the password.

This previously unreported issue occurred while Delta also worked to recover from a severe storm at its Atlanta hub, which caused the airline to cancel nearly 1,000 flights Friday and Saturday.

The reporter called the airline’s reservations center, where an agent immediately recognized the problem and said a known issue, regarding concerns about a potential security breach, had impacted a large number of customers earlier in the week, and those customers’ accounts had been locked. The agent said the customer, like others impacted, had to upload a photo of a valid government ID (such as a driver’s license) to verify his identity.

The agent helped the reporter navigate to a form on the airline’s website through which the photo could be uploaded. She said because of the large number of customers impacted, the requests were taking time to address; the reporter could call back later for further manual assistance over the phone if the issue wasn’t addressed in time.

“Delta SkyMiles accounts are secure,” a company spokesperson said in a statement, responding to questions about the issue. SkyMiles is the airline’s frequent flier program. “As we do occasionally, out of an abundance of caution, we reset credentials for accounts and ask that customers verify them with us to maintain security of the accounts. We apologize for any inconvenience this might cause.”

A different agent later in the day, assisting the reporter further, also recognized the issue immediately and said about 68,000 customers had been impacted. The spokesperson declined to comment further.

The 68,000 customers would represent fewer than 1% of Delta’s approximately 130 million SkyMiles members, and it was unclear whether any accounts had actually been breached, as opposed to whether, for example, hackers had unsuccessfully attempted to breach the airline’s systems.

But two security experts said the airline’s handling of the issue — locking customer accounts but not immediately notifying the impacted customers that they should attempt to reset their account credentials to regain access — was unusual.

“This is the first time I’ve ever heard of a company doing something like this without notifying customers,” Jonathan Weissman, a principal lecturer at the Rochester (New York) Institute of Technology’s cybersecurity department, said Saturday night. “It makes no sense that they would lock the accounts and not tell the customers that the accounts have been locked.”

Weissman said companies often require customers to reset their passwords, even after successfully blocking hackers from accessing an account, but they typically notify customers immediately when that happens so the customers can address the issue calmly and at their convenience rather than when they have an immediate need to access the company’s website or app.

“Locking the accounts is a good, safe measure,” Weissman said of Delta’s initial step. “But not communicating that fact to the affected customers can cause mass confusion and problems with people boarding flights eventually. The information should be forthcoming from [Delta], not in response to questions from customers.”

Weissman said it’s possible the airline doesn’t know the extent of the issue, but if it knew enough to lock the accounts, it should have notified customers of that action and their need to set new passwords at the same time.

Another cybersecurity expert, also speaking Saturday night, agreed.

“They need to come clean and do their best job of notifying everybody affected,” said Scott Schober, CEO of a New Jersey-based cybersecurity company called BVS and author of several books about cybersecurity. “At a minimum, they could alert you so you can take action, and then provide more information as they learn it.”

Less than half an hour after the first agent helped the reporter navigate the process of uploading the photo of his driver’s license, he received this message:

(WHTM)

But the password reset didn’t work. The reporter called and spoke with another agent who was also familiar with the issue and was able to help successfully reset the password, resulting in a successful account login.

Delta is generally well-regarded among U.S. airlines, sometimes ranking higher than all others in customer surveys and analyses of metrics such as airline punctuality.

Share this @internewscast.com
You May Also Like
Charlie Kirk’s alleged assassin returns to court — without showing his face

Charlie’s Kirk’s Accused Attacker Appears in Court Concealing Their Identity

PROVO, Utah — His absence from his own hearing left the courtroom…
Massive telecom bust in major city is ‘wake-up call’ as foreign adversaries threaten US security: experts

Telecom Collapse in Major City Highlights Security Threats from Foreign Adversaries, Experts Warn

The U.S. Secret Service has recently taken down an extensive telecommunications network…
Longtime customer shot at Jacksonville restaurant

Frequent Patron Injured in Shooting at Jacksonville Restaurant

A customer was shot during a weekend incident at Que Padre Mexican…
ICE in Chicago protest: Broadview, Illinois leaders to address what they call 'unprovoked' use of chemical agents at ICE facility

Chicago ICE Protest: Broadview, Illinois Leaders Condemn Alleged ‘Unprovoked’ Use of Chemical Agents at ICE Facility

CHICAGO (WLS) — Officials from the village of Broadview are scheduled to…
Blue city felon with violent history arrested in deadly train platform stabbing after parole release: report

Violent Ex-Felon Recently Released on Parole Arrested for Fatal Stabbing at Train Platform, Report Says

Police and a local news report indicate that a paroled felon with…
Second detainee dies after Dallas ICE facility sniper attack, family speaks out

Family Responds After Second Inmate Dies Following Sniper Incident at Dallas ICE Facility

A second detainee passed away after a gunman opened fire on a…
Plainfield murder-suicide: Ryan Heit shoots, kills wife, Jennifer, before taking own life on Burshire Court, Joliet police say

Tragic Incident in Plainfield: Ryan Heit Allegedly Kills Wife Jennifer Before Taking His Own Life, According to Joliet Police

According to Joliet police, a tragic incident occurred early Monday morning in…
Chicago news today: Wrigleyville prepares for Cubs vs. San Diego Padres MLB playoff Wild Card games

Wrigleyville Braces for Cubs Showdown with San Diego Padres in MLB Wild Card Playoffs

CHICAGO (WLS) — The anticipation was palpable in Wrigleyville on Monday afternoon,…
Three activists indicted for doxing ICE agent in Los Angeles

Three Activists Charged for Sharing Personal Information of ICE Agent in LA

The defendants are each charged with one count of conspiracy and one…
Reported threat at Jewish Congregation of Venice prompts large police response

Large Police Presence Responds to Reported Threat at Venice Jewish Congregation

The Jewish Congregation received phone calls threatening to “kill everyone,” according to…
Chicago Cubs set to take on San Diego Padres in first MLB playoff game at Wrigley Field since 2020

Chicago Cubs Gear Up to Face San Diego Padres in First Wrigley Field MLB Playoff Since 2020

CHICAGO (WLS) — It’s an exciting day on the city’s North Side.…
Texas woman with history of 5 marriages faces murder trial in husband's insulin death

Texas Woman with Five Previous Marriages Goes to Trial Over Husband’s Insulin-Related Death

Jury selection has begun in the high-profile murder trial of Sarah Hartsfield, the…