- Sunweb confirms data violation after phishing emails from targeted customers with false payment requests
- The attackers stole contact and reservation details; Sensitive identity and payment data has remained secure
- The incident was contained; Breach was reported to the Dutch authorities; Customers asked to contact their banks
Sunweb Group confirmed to suffer from a cyber attack and a data violation, and urged its customers to remain vigilant against incoming phishing attacks.
A security notification published on the travel company’s website said Sunweb had been informed of the violation when its customers began to receive phishing emails.
The emails saw the victims invited to “confirm their contact details and make a payment, otherwise their vacation would be canceled”.
“Fully contained”
Since emails do not come from Sunweb, but rather from the messaging server of another hacked company, the company launched an investigation.
This determined Sunweb network was raped and at least some of the information used in the attacks came from this violation.
The agency did not say who were the attackers, or if they contacted. He said they had stolen people’s names, email addresses, telephone numbers and various booking information (travel dates, destinations and similar).
On the other hand, the details of the credit card, passwords and information on the passport or identification document, remained secure.
The agency has also not said how many people have been affected by violation, or if they will obtain free identity and credit theft services, as is standard practice in these types of cyber attacks.
“The incident has now been fully contained and the affected system has been still assured,” said Sunweb.
After confirming the attack, the agency contacted people affected and is currently preparing the follow -up communication. The affected systems have been closed and “additional security measures” are implemented. Sunweb did not mention what measures were.
Finally, he pointed out the violation of the Dutch supervision authority and said to his customers who suspected of having been deceived – to reach out to their banks to try to prevent fraudulent transactions from continuing.
Follow Techradar on Google News And Add us as a favorite source To get our news, criticisms and expert opinions in your flows. Be sure to click on the follow!
And of course, you can also Follow Techradar on Tiktok For news, criticism, unpacking in video form and obtain regular updates to us on Whatsapp Also.
