Passengers' personal information was likely accessed via a third-party platform used at a call center, but didn't include passport or credit card info.
Initial Access Broker Self-Patches Zero Days as Turf Control
A likely China-nexus threat actor has been exploiting unpatched Ivanti vulnerabilities to gain initial access to victim networks and then patching the systems to block others from breaking in to the same network.