According to a press release issued by Finnair on Wednesday, scammers managed to steal frequent flyer points from the accounts of 16 Finnair Plus members.
How the scheme was carried out exactly remained unclear on Thurdsay, but the company says the hackers had opened a phony corporate Finnair Plus account and somehow used it to link to the personal accounts of 16 of the programme's members in order to access their Plus points.
Finnair said the company took immediate action when it became aware of the breach on Tuesday morning.
The stolen Finnair Plus points have since been returned to their rightful owners and the company carried out additional security measures on its systems, according to the press release.
The company also says it has revised its computer systems in order to prevent a similar incident in the future and has reported the breach to the Data Protection Ombudsman.
Finnair said that it has notified all 16 affected Finnair Plus customers and said the worry the incident had caused customers was regrettable.