Powered by MOMENTUM MEDIA
cyber daily logo

Breaking news and updates daily. Subscribe to our Newsletter

Powered by MOMENTUM MEDIA
Breaking news and updates daily. Subscribe to our Newsletter X facebook linkedin Instagram Instagram

Explore

SECTIONS

MORE

search button

1m files breached in Park’N Fly cyber attack

The data of around a million customer files of off-airport parking operator Park’N Fly have been compromised in a cyber attack.

user icon Daniel Croft
Wed, 28 Aug 2024 Security
1m files breached in Park ’N Fly cyber attack
expand image

In a statement to its affected customers, the US-based company said that roughly a million files belonging to its Canadian customers had been stolen by an unauthorised third party.

In the statement, Park’N Fly said that there had been a “data security incident that likely involved some of [its customer’s] personal information”.

The company said that in mid-July, threat actors gained access to its systems and stole data through stolen VPN credentials. It was later discovered on 1 August that customer information was stolen.

============
============

“Park’N Fly discovered that an unauthorised third party accessed our network through remote VPN access,” said the breach notice.

“Based on our investigation, we determined that the unauthorised activity occurred between July 11 and July 13, 2024. On August 1, 2024, we determined that some of your personal information was likely affected by the incident.”

According to Park’N Fly, stolen data appears to include names and contact information such as email addresses and mailing addresses. Additionally, Aeroplan and CAA numbers may have been exfiltrated; however, no financial or payment information was accessed.

Some disgruntled customers noted that stolen Aeroplan numbers could result in account theft, as threat actors could request password resets for those who are frequent-flyer members of Air Canada.

Following the attack, Park’N Fly told BleepingComputer that roughly 1 million customer files were accessed but that systems were restored within five days and that additional security measures had been put in place.

Cyber Daily logo
VIEW ALL

“While we deeply regret any concern this incident may have caused, we want to reassure our valued customers and partners that we are taking all necessary steps to safeguard their information,” said Park’N Fly’s CEO, Carlo Marrello.

“We remain committed to transparency and will continue to prioritise the integrity of our systems as we navigate this situation.”

Daniel Croft

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.

newsletter
cyber daily subscribe
Be the first to hear the latest developments in the cyber industry.
CD Logo

OUR PLATFORMS AND BRANDS

EVENTS AND SUMMITS

PODCASTS

LEARNING AND EDUCATION

MOMENTUM MARKETS NETWORK

LINKS

STAY CONNECTED

Be the first to hear the latest developments in the cyber industry.

Copyright © 2007-2024 MOMENTUMMEDIA
Copyright & DisclaimersPrivacy PolicyTerms & Conditions
momentummedia media
most innovative companies awards

OUR PLATFORMS AND BRANDS

EVENTS AND SUMMITS

PODCASTS

LEARNING AND EDUCATION

MOMENTUM MARKETS NETWORK

LINKS

CATEGORIES

STAY CONNECTED

Copyright © 2024 MOMENTUMMEDIA