If this means someone is now generally targeting airlines with hacks, it may be a rough ride. Airlines have been using tech for a long time, so their websites are generally an entry point to a mess of legacy integration. And you only have to hack a couple of airlines to get lots of people's data. We're close to a billion passengers flown per year in the US across all airlines.<p>Also interesting in this context: <a href="https://www.rsaconference.com/writable/presentations/file_upload/asd-r03_-westjets-security-architecture-made-simple-we-finally-got-it-right.pdf" rel="nofollow">https://www.rsaconference.com/writable/presentations/file_up...</a> <i>"WestJet’s Security Architecture Made Simple We Finally Got It Right (2015)"</i>