Saturday, April 5, 2025
Follow us On Linkedin
HomeCyber AttackEasyJet Hacked - More than 9 Million Customers Details Were Accessed

EasyJet Hacked – More than 9 Million Customers Details Were Accessed

Cyber AttackData Breach

Published on

By Gurubaran
EasyJet Hacked

Supply Chain Attack Prevention

SIEM as a Service

Follow Us on Google News

EasyJet admitted that hackers have stolen the email address and travel details of more than 9 million customers.

The company not provided any details of how the breach occurs or how the hackers gained access to their servers.

Due to this coronavirus pandemic, the company has grounded most of its flights, in 2019 easyJet uplifted 96.1 million passengers.

EasyJet Hacked – What Data Exposed

The company said the affected customers will be contacted in the next few days if your information has been accessed.

The data provided for flight booking such as name, email address, origin and destination, departure date, booking reference number, and transaction amount are impacted.

With further forensic investigation, the company found more than 2,208 credit card details were accessed by the attackers.

“There is no evidence that any personal information of any nature has been misused, however, on the recommendation of the ICO, we are communicating with the approximately 9 million customers whose travel details were accessed to advise them of protective steps to minimize any risk of potential phishing,” reads a company statement.

The company said they aware of this attack in January, it was highly sophisticated and took time to understand the scope of the attack and to identify who had been impacted.

According to EasyJet “as soon as we discovered it, we started an investigation and have closed off this unauthorized access.”

“All the affected customers will be notified no later than 26th of May, We’re sorry that this has happened, and we would like to reassure customers that we take the safety and security of their information very seriously.”

EasyJet Chief Executive Officer Johan Lundgren said: “We take the cybersecurity of our systems very seriously and have robust security measures in place to protect our customers’ personal information. However, this is an evolving threat as cyber attackers get ever more sophisticated.”

In this COVID-19 pandemic situation, there are high chances that personal data being used for online scams.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity, and hacking news updates.

141 Airlines Worldwide Affected by Biggest Security Vulnerability – Tens of Millions of Flight Travelers Affected

Ex-Employee Sentenced 10 Months Jail for Hacking JET2 Flights Network

Air India Servers Down – Flight Operations Affected Several Hours All Over the World

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Cyber Security News

Ivanti Fully Patched Connect Secure RCE Vulnerability That Actively Exploited in the Wild

Ivanti has issued an urgent security advisory for CVE-2025-22457, a critical vulnerability impacting Ivanti...
cyber security

Beware! Weaponized Job Recruitment Emails Spreading BeaverTail and Tropidoor Malware

A concerning malware campaign was disclosed by the AhnLab Security Intelligence Center (ASEC), revealing...
ChatGPT

EncryptHub Ransomware Uncovered Through ChatGPT Use and OPSEC Failures

EncryptHub, a rapidly evolving cybercriminal entity, has come under intense scrutiny following revelations of...
cyber security

PoisonSeed Targets CRM and Bulk Email Providers in New Supply Chain Phishing Attack

A sophisticated phishing campaign, dubbed "PoisonSeed," has been identified targeting customer relationship management (CRM)...

Supply Chain Attack Prevention

Free Webinar - Supply Chain Attack Prevention

Recent attacks like Polyfill[.]io show how compromised third-party components become backdoors for hackers. PCI DSS 4.0’s Requirement 6.4.3 mandates stricter browser script controls, while Requirement 12.8 focuses on securing third-party providers.

Join Vivekanand Gopalan (VP of Products – Indusface) and Phani Deepak Akella (VP of Marketing – Indusface) as they break down these compliance requirements and share strategies to protect your applications from supply chain attacks.

Discussion points

Meeting PCI DSS 4.0 mandates.
Blocking malicious components and unauthorized JavaScript execution.
PIdentifying attack surfaces from third-party dependencies.
Preventing man-in-the-browser attacks with proactive monitoring.

Register Now

More like this

cyber security

State Bar of Texas Confirms Data Breach, Begins Notifying Affected Consumers

The State Bar of Texas has confirmed a data breach following the detection of...
Cyber Attack

Hackers Use URL Shorteners and QR Codes in Tax-Themed Phishing Attacks

As the United States approaches Tax Day on April 15, cybersecurity experts have uncovered...
Cyber Attack

Hackers Exploit Fast Flux to Evade Detection and Obscure Malicious Servers

Cybersecurity agencies worldwide have issued a joint advisory warning against the growing threat posed...

GBHackers on Security is a top cybersecurity news platform, delivering up-to-date coverage on breaches, emerging threats, malware, vulnerabilities, and global cyber incidents.

Company

Trending

Categories

Copyright @ 2016 - 2025 GBHackers On Security - All Rights Reserved