Total Tests:

UK airline easyJet data breach impacts 9M customers – expert commentary

Information Security Buzz
Wednesday, May 20, 2020

easyJet confirmed that it has been a victim of data breach, where the hacker gained access to nine million customers’ email addresses and travel details. Additionally, 2,208 credit-card details were also compromised. The company has yet to disclose when and how the breach occurred. It has alerted the UK’s Information Commissioner’s Office and National Cyber Security Centre (NCSC) as well as hired an expert to look into the breach.

Ilia Kolochenko, CEO, ImmuniWeb

Affected customers should urgently contact their banks to consider credit card cancellation and re-issue process.

9 million user records and just 2 million credit card details seem to be just a tiny percentage of the total number of EasyJet customers. This may be an indicator that either the attack affected an isolated server or probably a supplier, or that it was quickly detected stopping data exfiltration process of the attackers.

The scant volume of currently disclosed information about the data breach is, however, insufficient to make definitive conclusions about the origins and potential consequences of the attack. In any case, it will likely be difficult to avoid financial penalties under the GDPR, but depending on the negligence involved in the cause of the incident, the fine may be rather nominal than exemplary punitive.

Affected customers should urgently contact their banks to consider credit card cancellation and re-issue process. Read Full Article


Book a Call Ask a Question
Close
Talk to ImmuniWeb Experts
ImmuniWeb AI Platform
Have a Technical Question?

Our security experts will answer within
one business day. No obligations.

Have a Sales Question?
Email:
Tel: +41 22 560 6800 (Switzerland)
Tel: +1 720 605 9147 (USA)
*
*
*
*
Your data will stay private and confidential