Leave a comment

Anyone can access your boarding pass

Anyone can access your boarding pass
Image courtesy of Shutterstock

Have you flown with Delta Airlines recently? If so, then your boarding pass was wide open to hackers. Oh, and if you missed yesterday's announcement — you might have a single pilot making sure that you're safe in the air.

That's right, you have to take your shoes off at security but Delta Airlines couldn't even bother to keep your passport private. Kind of frustrating, isn't it? If you aren't annoyed yet, you will be once you learn about how this vulnerability works.

Dani Grant, a write for the Hackers of NY cyber security blog, ran a few tests after Delta Airlines emailed her a boarding pass. She discovered that the site wasn't secured by HTTPS protection, but also that URL trickery could get a hacker access to your boarding pass.

What kind of URL trickery? The kind where Grant discovered that changing any part of the identification code in her boarding pass's URL could get her instant access to another person's boarding pass.

Next page: Find out more about this awful security mistake
Data breach at airport parking service
Previous Happening Now

Data breach at airport parking service

The LAPD is getting body cameras
Next Happening Now

The LAPD is getting body cameras

View Comments ()