The personal data of up to 9.4 million Cathay Pacific passengers has been accessed in the latest security breach to hit the aviation industry.
The Hong Kong-based carrier revealed that “unauthorised access” had been obtained to some of its information system.
Passport numbers, email addresses and 403 expired credit card details were among the data leaked.
Chief executive Rupert Hogg apologised and said there was “no evidence” the information had been misused.
The incident comes weeks after British Airways revealed a major data leak had hit its customers.
Cathay Pacific revealed that a wide range of personal information was accessed including passport details, identity card numbers, travel history and email addresses.
No passwords were compromised.
“We are very sorry for any concern this data security event may cause our passengers,” Hogg said.
He added that there was “no evidence that any personal data has been misused” and that the airline was in the process of contacting affected passengers.
Police in Hong Kong have been notified together with relevant authorities.
Hogg said: “We want to reassure our passengers that we took and continue to take measures to ensure our IT security. The safety and security of our passengers remains our top priority.”