TravelMole
Tech

Singapore Airlines beefing up security of KrisFlyer loyalty programme

Sunday, 20 May 20183 min read

Singapore Airlines has told frequent fliers to expect beefed up security protocols for KrisFlyer loyalty programme after the airline acknowledged some members had their accounts compromised.

The airline communicated notice of changes coming with two-factor authentication required from June 29.

It reminded members to make sure mobile numbers and email addresses registered with their account are up to date.

Members will then be asked to enter a one-time password when accessing their accounts which will be sent to their registered mobile number.

"Singapore Airlines is committed to providing our customers with a high level of online security. Two-factor authentication has been introduced as part of KrisFlyer’s ongoing efforts to enhance online security for the benefit of our members," it said in an email to members.

Although it didn’t seem to be a widespread problem, two member accounts were compromised and several thousand KrisFlyer miles were stolen.

Frequent traveller programmes have long been thought of as the weak link by cybersecurity experts with many still protected by no more than a customer ID and numeric password, which can be easily cracked by skilled hackers.

Multi-factor authentication is slowly becoming more widespread although there are still dozens of hotel and airline programmes yet to catch up.