Arik Air has reassured its customers that its online portal is secure.
This follows a report that data belonging to the airline’s customers between December 2017 and March 2018 was leaked.
Justin Paine, head of trust & safety at Cloudflare, had said he discovered massive leak from the airline’s customer database during a routine search for “open, exposed, or vulnerable Amazon S3 buckets”.
Paine said his investigations revealed that data points of thousands of the airline’s customers— ranging from email addresses to credit card details — were vulnerable to attack.
But in a statement sent to TheCable by Adebanji Ola, Arik Air spokesman, the airline denied using “Amazon S3 bucket” for hosting its services.
Arik said security and protection customer data is of priority, hence it reviews all its systems and processes.
“Our attention has been drawn to a reported exposure/vulnerability of customer data on Amazon S3 bucket. We can confirm that we do not use Amazon S3 for our hosting services,” the statement read.
“Our online platforms are up and running and not under attack. Arik Air takes IT security and protection of customer data seriously.
“We are reviewing all our systems including interface with third party processors to eliminate vulnerabilities.
“We would like to assure our customers of the safety of our online sales platforms.”