UK’s airline EasyJet Data Breached, around 9 million customer details, and over 2000 credit cards details exposed
EasyJet is a British low-cost airline group headquartered at London Luton Airport. It operates domestic and international scheduled services on over 1,000 routes in more than 30 countries via its affiliate airlines EasyJet UK, EasyJet Switzerland, and EasyJet Europe. EasyJet plc is listed on the London Stock Exchange and is a constituent of the FTSE 100 Index.
According to ZDNet, EasyJet UK airline said that it has faced a data breach led by a “highly sophisticated” attacker, the breach affected around 9 million customers’ email id’s and travel details and over 2000 credit card details. The company said 2,208 credit-card details were accessed by hackers, noting it had “closed off this unauthorized access”.
EasyJet is yet to disclose the dates when the breach took place and how the breach affected its systems. The company has notified the UK’s Information Commissioner’s Office and National Cyber Security Centre (NCSC) as well as hired a digital forensics expert to investigate the breach. The company also said that all the affected customers will be notified about the breach before 26th May.
A couple of years ago 500,000 customers data was breached from British Airways and was fined a record £183.4m ($225m) last year by the Information Commissioner’s Office under Europe’s General Data Protection Regulation (GDPR).
EasyJet has warned its customers to be alert on the issue, The Information Commissioner’s Office has advised the company to disclose the breach as the affected customers can be targeted by the attackers.
We take the cybersecurity of our systems very seriously and have robust security measures in place to protect our customers’ personal information. However, this is an evolving threat as cyber attackers get ever more sophisticated
said EasyJet CEO Johan Lundgren.