It is still unclear how hackers gained access to the airline's system to steal customer data, including full names, credit card numbers, expiration dates and three digit security codes. 

Customers discovered the incident via fraudulent charges before the company was aware, and then incident went public on Twitter.