An attack against British airline easyJet by “a highly sophisticated source” accessed the email addresses and travel details of approximately nine million customers, including credit card details of 2,208 customers.
The company did not reveal when it learned of the attack or what a forensic investigation revealed, nor did it specify the breach date.
Although the airline alerted its impacted customers, its consumer-facing website buried the news of the breach within a press release dated May 19 on its corporate site. The first words of the release state the announcement was being made “following discussions with the ICO….”
Please register to continue.
Already registered? Log in.
Once you register, you’ll receive:
The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.
Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.
SC Media’s essential morning briefing for cybersecurity professionals.
One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.