The hackers who attacked Cathay were given access to 27 credit card numbers but without the security codes of the cards and another 403 expired credit card numbers, according to the airline. He said that "there is no evidence that any personal information was abused," adding that "no passwords were compromised."
Cathay said she discovered "suspicious activity" on his network in March and "took immediate action to curb the incident" and investigated it with the help of a cybersecurity firm. It confirmed in May that personal data had been compromised and has since analyzed the data to determine which passengers were affected.
Cathay shares fell more than 5% on Thursday after disclosure of Hong Kong breach in the morning trade.
The airline said the combination of data collected by hackers varies from passenger to passenger. It contained approximately 860,000 passport numbers and 245,000 Hong Kong passport numbers.