SAA has confirmed that no customer data appears to have been compromised in a recent cyberattack targeting the airline’s digital infrastructure.
In a statement last week, the airline reassured stakeholders that while the attack caused temporary disruption to the airline’s website, mobile app, and certain internal communication systems, core operational and financial systems remained unaffected.
"Preliminary findings indicate that our core business management systems were not impacted. Flight operations, including scheduling, reservations, check-in, baggage tracking and boarding systems continued to function normally," the airline said.
SAA’s Voyager programme was also unaffected.
An expert digital forensic investigation is currently under way to determine the incident's full scope and root cause and whether any personal data, such as passport, ID and credit card information, was accessed or exfiltrated.
“Presently, there is no evidence of compromised customer data or SAA’s financial management systems. Should any evidence of data compromise be found, we will promptly notify affected individuals and corporations directly, in line with regulatory obligations,” SAA stated.
The airline said it was working closely with the State Security Agency to implement strengthened cybersecurity measures to mitigate possible future attacks.
