Rewterz Threat Alert – EasyJet Airlines 9 million travel records taken in data breach

Severity

High

Analysis Summary

EasyJet, the U.K.’s largest airline, said hackers have accessed the travel details and credit card details of 9 million customers. With confirmation of the data has not been misused, the airline said that they would be contacting the customers in few days to regain the trust of the customers and let them know the complete  details of what has happened. The airline, like the rest of the aviation industry, has been hit hard by the coronavirus pandemic, and are trying to make up for the lost numbers.

EasyJet representative said:

“This was a highly sophisticated attack. It took time to understand the scope of the attack and to identify who had been impacted,”

“We could only inform people once the investigation had progressed enough that we were able to identify whether any individuals have been affected, then who had been impacted and what information had been accessed.”

When it comes to aviation industry, the track record has been not impressive in terms of breaches as it has been seen often that threat actors take advantage of loop holes of weak security measures taken by airlines to secure data of their customers.

It is also warned to the customers to look out for the phishing email attacks and directed them to its advice on its website.

Impact

Information theft

Affected Vendors

EasyJet