Thousands of Virgin Australia customers have become the latest victims in the fallout of the massive data breach at Australian private health insurance provider Medibank.
On the evening of Nov. 9, Virgin Australia was informed by Medibank that several thousand of its Velocity Frequent Flyer membership numbers were leaked in the cyber-attack.
The airline immediately locked those accounts and later sent notices to impacted customers on the morning of Nov. 10.
“After being notified late yesterday, Virgin Australia is acting to protect a small number of Velocity Frequent Flyer membership numbers that may have been compromised as part of the Medibank cyber-crime event,” a spokesperson told The Epoch Times.
“As a precautionary measure, we have locked the accounts of impacted members. We are notifying impacted members this morning and are in the process of creating new membership numbers for those members.”
Virgin Australia said around 2,800 members were affected by the incident.
While the impacted customers can still travel, access lounges and earn points, they are temporarily unable to redeem points and log in to their online accounts.
However, they will not be waiting long, as the airline said it would finish creating new membership numbers in the coming days.
New Privacy Bill Imposes Tougher Penalties on Data Breaches
Meanwhile, a new privacy bill has passed the lower house of the Australian parliament.Under the new bill, fines for data breaches will significantly increase from $2.2 million to either $50 million, 30 percent of a company’s turnover during the affected period, or three times the value of any benefit obtained through the misuse of personal information.
The amendment to the privacy laws will also grant the Australian information commissioner greater power to tackle privacy breaches and facilitate the sharing of information about data breaches to help affected customers.
The bill will now be moved to the upper house for further debate.
