In an email sent to customers, the airline stated that part of its customer data stored on the partner’s system may have been accessed without authorization. However, Vietnam Airlines assured that no sensitive information was compromised.

Sensitive data such as credit card details, payment information, passwords, travel itineraries, passport numbers, and Lotusmiles account balances remain secure and were not affected, the airline wrote in its message to customers.

Vietnam Airlines said it is working closely with relevant authorities, cybersecurity experts, and the technology partner to investigate the incident, assess its impact, and strengthen data protection measures.

The airline also advised customers to immediately change their Lotusmiles account passwords and associated email passwords, be cautious of suspicious calls or messages impersonating Vietnam Airlines, and avoid sharing personal information or OTP codes. Customers were also warned not to log into any unverified systems.

On October 10, approximately 23 million records were leaked, including customer data from several major companies. The exposed information includes names, email addresses, phone numbers, dates of birth, and mailing addresses.

According to CyberInsider, this marks the first batch of data released following a cyberattack by the hacker group Scattered LAPSUS$ Hunters, who reportedly breached the Salesforce accounts of 39 companies starting in June 2025. Salesforce is a widely-used customer relationship management (CRM) platform by major corporations.

The leaked data in this initial release involves six companies - Qantas Airways, Vietnam Airlines, Albertsons, Gap, FujiFilm, and Engie Resources.

Vietnam Airlines to launch direct Hanoi-Cebu route in December

VOV.VN - National flag carrier Vietnam Airlines will open a direct air service from Hanoi to Cebu, the Philippines, starting December 1, with three flights per week operated by Airbus A321 aircraft.