Categories: Cyber AttackWhat is

American Airlines Hacked – Email Accounts Compromised to Gain Personal Data Access

After hackers compromised an undisclosed number of employee email accounts and accessed sensitive personal information, American Airlines has informed its customers that they have been the victim of a recent data breach.

It was revealed via notification letters that were sent to customers that the airline did not have any clue regarding the exposure and exploitation of the data.

On July 5th, American Airlines discovered that they had been hacked. Following the security breach, their immediate response was to secure the impacted email accounts the minute they became aware of it. 

Further, the company has also sought the assistance of a cybersecurity forensics firm in order to conduct an investigation into the security breach.

Exposed Personal Information

This attack may have exposed employees’ and customers’ personal information that could have been accessed by the threat actors as a result of the attack.

While here below we have mentioned the data that may have been exposed by the threat actors:-

  • Names
  • Dates of birth
  • Mailing addresses
  • Phone numbers
  • Email addresses
  • Driver’s license numbers
  • Passport numbers
  • Certain medical information

There has also been a statement by the airline offering free two-year memberships to Experian’s IdentityWorks to affected customers to assist them in dealing with identity theft issues.

Moreover, American Airlines strongly recommended users that they should monitor their free credit reports and frequently review their account statements to remain alert.

Affected Individuals are Few

Currently, the number of customers affected by the incident and the number of email accounts that have been breached by the issue have not been disclosed by the company.

A phishing campaign was used in order to compromise the accounts of the employees. However, the company refused to provide information on how many clients were affected or how many employees were affected.

Here’s what the Sr. Manager for Corporate Communications of American Airlines, Andrea Koos stated:-

“A limited number of team members’ emails were accessed by an unauthorized phishing campaign. There was just a small amount of personal information on customers and employees contained in these email accounts, which was not very large.”

What is American Airlines Doing?

In addition to operating around 6,700 flights a day to about 350 destinations in over 50 countries, American Airlines is the largest airline by fleet size in the world, serving more than 1,300 aircraft on its mainline, and it employs more than 120,000 people.

Currently, the company has claimed that they are working on adding more technical safeguards to their existing system to avoid a future occurrence of such an event.

Download Free SWG – Secure Web Filtering – E-book

Balaji

BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Recent Posts

Ivanti Fully Patched Connect Secure RCE Vulnerability That Actively Exploited in the Wild

Ivanti has issued an urgent security advisory for CVE-2025-22457, a critical vulnerability impacting Ivanti Connect…

1 day ago

Beware! Weaponized Job Recruitment Emails Spreading BeaverTail and Tropidoor Malware

A concerning malware campaign was disclosed by the AhnLab Security Intelligence Center (ASEC), revealing how…

1 day ago

EncryptHub Ransomware Uncovered Through ChatGPT Use and OPSEC Failures

EncryptHub, a rapidly evolving cybercriminal entity, has come under intense scrutiny following revelations of operational…

1 day ago

PoisonSeed Targets CRM and Bulk Email Providers in New Supply Chain Phishing Attack

A sophisticated phishing campaign, dubbed "PoisonSeed," has been identified targeting customer relationship management (CRM) and…

1 day ago

Beware! Fake Unpaid Tolls Messages Used in Phishing Attack to Steal Login Credentials

A surge in phishing text messages claiming unpaid tolls has been linked to a massive…

1 day ago

State Bar of Texas Confirms Data Breach, Begins Notifying Affected Consumers

The State Bar of Texas has confirmed a data breach following the detection of unauthorized…

1 day ago