- Collins Aerospace suffered a data breach
- This breach could affect passengers at Dublin and Cork airports
- Any person concerned may be exposed to a risk of identity theft or fraud.
A key supplier to Dublin and Cork airports has confirmed it has suffered a data breach, which is believed to affect the passenger details of potentially millions of people who passed through the airports in August 2025.
DAA, the management authority for the two travel hubs, told the Irish Times a data security incident involving third-party vendor Collins Aerospace had resulted in boarding pass information being published online by a “cybercriminal group”.
Although the DAA has reassured passengers that they do not need to take immediate action, if personal information is exposed it could put them at risk of identity theft or fraud. They should therefore closely monitor their accounts for any suspicious activity.
Ongoing investigation
Swedish airline SAS has distributed an email warning passengers who flew to Dublin or Cork in August 2025 that their information could be affected;
“The affected files included your booking reference, first name, last name and frequent flyer number. Based on this information, it is possible that other details related to your booking – such as contact details and travel itinerary – could have been accessed. It is possible that this information could be disclosed to the public by the unauthorized party.”
So far, there is no evidence of a direct impact on the DAA systems themselves, and there appears to be no disruption to flights or reservations.
There have been a series of high-profile cybersecurity incidents in recent months, the vast majority of which resulted from an initial breach by third-party contractors.
Recent research suggests that a third of all cyberattacks now involve third-party vendors or external platforms, highlighting the challenges security teams now face in keeping not only their own systems safe, but also those of their partners.
The best identity theft protection for every budget
