UK's troubled easyJet targeted by cyber attackers
A cyber attack on British airline easyJet accessed the email and travel details of around 9 million customers, as well as the credit card details of more than 2,000, it said yesterday.
The news of the late January attack means the budget airline, which has grounded most of its flights due to the novel coronavirus pandemic and is locked in a long-running battle with its founder and biggest shareholder, could face a hefty fine by legal authorities.
British Airways, which was hit in 2018 with the theft of hundreds of thousands of credit card details, is still appealing a fine of 183.4 million pounds (US$225 million) from the Information Commissioner’s Office.
“Since we became aware of the incident, it has become clear that owing to COVID-19 there is heightened concern about personal data being used for online scams,” easyJet Chief Executive Officer Johan Lundgren said.
“As a result, and on the recommendation of the ICO, we are contacting those customers whose travel information was accessed and we are advising them to be extra vigilant, particularly if they receive unsolicited communications.”
The airline said it did not look like any personal information had been misused. It has engaged leading forensic experts to investigate and has also notified the National Cyber Security Center.
“We would like to apologize to those customers who have been affected by this incident,” Lundgren said.
Hackers around the world have stepped up their efforts in recent months, taking advantage of the pandemic to trick people into revealing their passwords and other data. Officials have also warned of greater risks as people working from home create opportunities for hackers.
Shares of easyJet have shed 64 percent in three months.