Ryanair Shrugs Off Discovery That Others Can Edit Your Flight Booking; Says It's Your Problem

from the oh-really-now? dept

European discount airline Ryanair is somewhat famous for their near total lack of concern about customer happiness. The airline, at times, seems almost gleeful about the complaints it gets from customers. Still, it seems to go pretty far to completely shrug off a security hole that allows others to edit your bookings (found via Glyn Moody). Basically, some researchers discovered that if you know someone’s email address and the date (and locations) that they’re planning to fly, you can access their account and even adjust and manipulate the bookings. That’s because the site apparently does not use passwords, but just those bits of information. What’s really stunning is Ryanair’s response:

“Your ‘experts’ are talking complete rubbish. If someone’s lunatic ex-partner wants to access a flight booking and pay for priority boarding or extra baggage for the person they just split up from then they all have a lot more to worry about than a simple amended flight booking. It is everyone’s individual responsibility to keep their personal information personal.”

That’s from Ryanair spokesman Daniel de Carvalho. Anyone taking bets on how long until someone changes one of de Carvalho’s own flight bookings?

Filed Under: , ,
Companies: ryanair

Rate this comment as insightful
Rate this comment as funny
You have rated this comment as insightful
You have rated this comment as funny
Flag this comment as abusive/trolling/spam
You have flagged this comment
The first word has already been claimed
The last word has already been claimed
Insightful Lightbulb icon Funny Laughing icon Abusive/trolling/spam Flag icon Insightful badge Lightbulb icon Funny badge Laughing icon Comments icon

Comments on “Ryanair Shrugs Off Discovery That Others Can Edit Your Flight Booking; Says It's Your Problem”

Subscribe: RSS Leave a comment
Andy (profile) says:

What an incredibly ignorant response from this guy. Obviously people should keep their personal data personal, but an email address is exactly the sort of thing people absolutely need to share. How else will anybody else be able to email them if they didn’t pass that out. And knowing the dates someone is planning to travel is hardly secret personal information either. There are a host of reasons someone would get to know this.

Ryanair are only compounding their image as a company with no concern or respect for their customers. Hardly a winning approach to doing business!

Dave W (profile) says:

I’m not at all surprised by this. Ryanair’s attitude with customer complaints is to be bullish in the extreme. Just look up “michael o’leary” to see any number of quotes.

Their rule is – when our tickets are ?1 a flight – you pay what you get for so why should you be surprised if it goes wrong. Michael O’Leary said he would charge you ?1 to use the toilet if he thought you could get away with it. He already charges all passengers a “wheelchair fee” because EU law says he isn’t allowed to charge wheelchair users this directly.

He’s lovely. Like a case of herpes.

I think this website can say an awful lot more than i can about ryanair = http://www.ihateryanair.org/.

Frankly, i’m not surprised by this story but i long ago realised using Ryanair was a false economy.

Urza9814 says:

Duh. It's Ryanair.

I’ve never flown Ryanair, never heard any of the apparently vast quantity of horror stories about them…the only thing I know about them is that they offer rock bottom prices. And from that alone, this does not surprise me at all.

This isn’t a massive security hole. This would still take a fair bit of effort. And the kinds of people important enough to target with something like this are not the kinds of people who will be flying Ryanair. Yes, your crazy ex might screw with your flights…but I’m sure they could find a way to do that on any airline, this just makes it easier. What do you want for that price?

Seriously, this is a company whose sole goal is to charge the absolute least amount possible. Which means they’re going for the customers who either don’t care about service or can’t afford anything better. You expect them to spend the money to fix some tiny little security hole, that won’t matter to 99% of their customers?

Add Your Comment

Your email address will not be published. Required fields are marked *

Have a Techdirt Account? Sign in now. Want one? Register here

Comment Options:

Make this the or (get credits or sign in to see balance) what's this?

What's this?

Techdirt community members with Techdirt Credits can spotlight a comment as either the "First Word" or "Last Word" on a particular comment thread. Credits can be purchased at the Techdirt Insider Shop »

Follow Techdirt

Techdirt Daily Newsletter

Techdirt Deals
Techdirt Insider Discord
The latest chatter on the Techdirt Insider Discord channel...