Airlines

Airline Industry Index

Metrics derived from continuous monitoring of airline digital environments. This information is updated every 30 days.

Company	Vendors	Domains	New Domains (%)	Third-party Code (%)	High-risk (%)	Malware event	Total Cookies	Cookies over 12 Months (%)	Longest Cookie Lifespan	Aggregate Load Time(Sec)	Average JavaScript Download Size(MBs)
Benchmark	35	60	5%	90%	1%	No	129	30%	68 years	3.38	0.67
Airline 1	46	65	3%	86%	0%	No	158	41%	19 years	3.36	0.51
Airline 2	67	120	5%	90%	1%	No	255	30%	68 years	3.97	0.08
Airline 3	5	8	0%	100%	0%	No	19	5%	1 year	3.33	0.42
Airline 4	43	84	10%	79%	2%	No	175	29%	10 years	4.96	0.36
Airline 5	13	21	10%	95%	0%	No	38	47%	68 years	8.45	1.24

Industry Insights FAQ

Key Learnings:

As British Airlines, Air Canada and Cathay Pacific learned, falling prey to a website or mobile app security incident is a real risk. With more consumers making direct travel purchases online, the airline industry needs to better protect digital assets. Inability to identify and secure the code that renders on consumer devices is a serious problem. On average, the Airline sector experienced:

90% of executing domains are from third-party vendors
5% month-over-month domain variability, trending down since August
60% domains, on average, execute when consumers access the home page
1% high-risk domains, on average, with Airline 4 using the most risky domains
68 year cookie is the largest tracker; it’s found on 2 sites
JavaScript download size is controlled, remaining at 0.67MB