MANILA, Philippines — Budget carrier Cebu Pacific on Thursday said all online channels of its rewards program GetGo have been temporarily disabled as it investigates a breach that hit the platform’s server.
In an advisory, Cebu Pacific said there was an unauthorized access to a GetGo application server Wednesday night.
It added that it has informed the National Privacy Commission about the breach.
“This server has been secured. We can also confirm that credit card information was not stored on that server,” the low-cost airline said.
“As a precaution, we have temporarily disabled log-in using GetGo credentials to the cebupacificair.com website and mobile app, both of which remain secure,” it added.
In a statement, the NPC said it ordered the company's data protection officer to ascertain if there is a need to inform affected data subjects of the breach, along with specific precautions and other measures they may take to protect themselves.
The agency added that it was informed by Cebu Pacific that the “extent and nature” of the breach is still being determined. — Ian Nicolas Cigaral