- Unidentified hackers access Air France and KLM via a third -party service provider
- The attackers stolen names, contact details and more
- Passport data were not compromised
Air France and KLM Royal Dutch Airlines recently confirmed cyber attacks in which the two airlines have lost sensitive customer data.
The companies, both detainees by the same company to hold airlines, sent letters of data violation notification to the customers concerned and in a shared press release with TweakersKLM said the incident occurred when threat stakeholders broke into a third -party service provider.
“An unusual activity was detected on a third-party platform used by our contact centers, which led our IT security team, as well as the third party system involved, to quickly implement corrective measures to end the incident,” said the company also Cyberness.
Was it a scattered spider?
We do not know exactly how many people have been affected by the breach, but the airlines transport more than 80 million people each year.
The information stolen in this attack includes the complete names of people, the contact details, the flying blue numbers and the level levels, as well as the service request emails.
Fortunately, passport numbers, payment card details, passwords or flying blue miles sales (the airline loyalty program) were not stolen.
There was no word on the attackers and no one claimed the responsibility of the attack.
However, at the end of June 2025, the FBI warned dispersed spider hackers now increased targeted airlines.
SPORED SPIDER works by usurping the identity of the company’s staff and by convincing employees of the IT service that they have lost access to their corporate accounts.
After accessing the initial access, they map the company, identify high -level individuals, then repeat the process until they have access to accounts through which they can steal data.
The hacking group struck Qantas in early July 2025, and Hawaiian Airlines at the end of June, and Russian Aeroflot, American Globalx and Canadian Westjet have all undergone similar incidents in recent months.
