EasyJet Faces Cyber-Attack, Exposing Customer Data
British low-cost airline EasyJet has confirmed that it has suffered a significant cyber-attack, which the company characterized as “highly sophisticated.” The breach has affected approximately 9 million customers, revealing their email addresses and travel information, as stated in an official release issued today.
Among the affected customers, a smaller group of 2,208 individuals also had their credit card details compromised, although no passport information was accessed. The company has not disclosed the specifics surrounding how and when the breach occurred, nor the duration for which the unauthorized access remained.
In light of this incident, EasyJet has expressed its commitment to securing users’ data. The airline reported that immediate measures were enacted upon discovering the breach, including working with forensic experts to investigate the matter. It reassured customers that unauthorized access has been terminated and stated that there is “no evidence” of misuse of personal information.
EasyJet has proactively notified the Information Commissioner’s Office (ICO), the UK’s data protection regulator, and is engaged in an ongoing investigation to assess the full extent of the breach and improve existing security measures. CEO Johan Lundgren underscored the airline’s dedication to cybersecurity, acknowledging the evolving nature of cyber threats and the need for businesses to remain vigilant.
The ICO has recommended that EasyJet alert customers whose travel and credit card details were compromised. These customers will receive notifications by May 26, advising them to be particularly cautious of any unsolicited communications that may arise as a consequence of the breach.
Historically, breaches of this magnitude have led to significant repercussions. For instance, British Airways was previously fined £183 million following a breach that exposed the information of approximately 500,000 customers, highlighting the potential ramifications for companies that fall short in data protection.
As affected customers prepare to navigate the possible aftermath of this attack, they are advised to remain skeptical of phishing emails. Cybercriminals commonly exploit such breaches to attempt further retrieval of sensitive information. Those whose credit card details were compromised are encouraged to block the affected cards and monitor their financial statements closely for any unusual activity.
In terms of potential tactics utilized in this incident, the MITRE ATT&CK framework could suggest techniques such as initial access through phishing or exploitation of vulnerabilities, persistence in maintaining access within EasyJet’s systems, and privilege escalation to gain unauthorized rights. These tactics reflect the sophisticated landscape of cyber threats businesses face today.
EasyJet’s recent experience serves as a cautionary tale for organizations globally about the pressing need for robust cybersecurity strategies. With cyber threats continuously evolving, it is imperative that businesses remain agile and proactive in safeguarding their sensitive information against potential breaches.
