The low-cost British airline EasyJet has today recognized the airline as a victim of a cyber attack, which it has identified as very complex, revealing the email addresses and travel details of approximately 9 million of its customers. More explanation Outsource hosting support.
In an official statement published today, EasyJet confirmed that of the 9 million users involved, a small subset of the 2208 customers, their credit card details have also been stolen, although no information about their passports is available.
The airline did not disclose exactly how the infringement took place at the time it occurred, how the intruders managed to gain unauthorised access to their customers’ private information, or how long they had access to the airline’s systems.
EasyJet, however, assured its users that the company closed down unauthorized access after the discovery and found no evidence that personal information of any kind had been misused by criminals.
As soon as we became aware of the attack, we took immediate steps to respond and manage the incident, and we called in leading forensic experts for the investigation, according to a statement released today by the company.
EasyJet has also notified the Office of the Information Commissioner (ICO), a UK data protection authority, and continues to investigate the breach to determine its extent and to further improve the security situation.
We take the cyber security of our systems very seriously and apply strict security measures to protect our customers’ personal data. But as cybercriminals become more sophisticated, this is becoming an increasingly serious threat, says Johan Lundgren, CEO of EasyJet.
Since we became aware of the incident, COWID-19 has been concerned about the use of personal information for online fraud. Every company must remain flexible in order to stay one step ahead of the threat.
As a precautionary measure, as recommended by the ICO, the airline started contacting all customers whose travel and credit card details were available contrary to the ICO recommendations and advised them to be particularly vigilant, especially if they received unsolicited messages.
The customers concerned will be informed by the 26. Can be reported.
Last year, the ICO British Airways fined British Airways £183 million for failing to protect the personal data of nearly half a million of its customers during a security incident in 2018 in connection with a Card King attack on the Magecart-like website.
Customers should be wary of phishing emails. Phishing emails are usually the next step for attackers, who want to entice users to reveal more detailed information about their accounts, such as passwords and bank details.
Affected customers who disclose their credit card details are advised to block the cards in question and apply for a new card at the relevant financial institution, as well as always carefully check your bank statements and payment cards for any unusual activities and inform the bank if you find them.