Hackers accessed 9.4 million Cathay Pacific passenger profiles but did not appear to pursue credit card details. Hong Kong's privacy watchdog found Cathay violated data law but was fully compliant in taking seven months to disclose the breach since Hong Kong does not have statutory requirements.
