FlightAware notifies users of data security incident

FlightAware, a provider of real-time flight tracking information, has notified users of a data security incident that may have exposed personal information. The company is taking precautionary measures by asking all potentially affected users to reset their passwords.

The incident, discovered on July 25, 2024, was caused by a configuration error that may have inadvertently exposed sensitive information stored in users' FlightAware accounts. This information includes user IDs, passwords, email addresses, and other personal information such as full names, billing and shipping addresses, IP addresses, social media accounts, phone numbers, year of birth, the last four digits of credit card numbers, and account activity.

“We deeply regret that this incident occurred,” said Matt Davis, president and general manager of FlightAware, in a statement. “After we became aware of the issue, we immediately fixed the configuration error and took steps to protect our users.”

FlightAware is asking users to reset their passwords the next time they log in or via the link provided. The company has assured customers that the notification was not delayed by a police investigation.

For further assistance, FlightAware encourages users to contact the Customer Support Center at [email protected] or by mail to the Houston office.

This incident underscores the importance of maintaining strict security measures to protect personal data in the digital age.