The following is via Google’s translation of what Brenno de Winter reported:
… leaked CheapTickets.nl a database of 715,000 customers. Attackers did not just names but also tickets and passport numbers.
It found a source that reported on condition of anonymity. He discovered that the Windows Server 2003 environment, not all patches were rotated. Because the area was vulnerable to a weakness published in 2009, he was able to access the system containing the database with customer data.
Lot of personal information
In the database, the personal information of 715,000 customers, including full name, address, telephone number and meal preferences. Together, these customers took more than 1.2 million tickets away. For flights to destinations including the United States give their passengers through passport. 80,000 of them are certainly in the database.
[…]
CheapTickets.nl will not respond to questions from Macworld. But Raymond Vrijenhoek, CEO CheapTickets.nl will come later today in a statement
Read more on Webwereld. In reading translations of other news stories on the breach, I chuckled over one translation of outdated/unpatched as “stale.” That seems about right.
h/t, @EUdiscovery.