EasyJet has admitted that a highly sophisticated cyberattack affected approximately nine million customers. These are e-mail addresses and travel data that were stolen. The hackers of 2.208 customers also had access to the credit card details. In the meantime, an investigation into the hacking attack has started and the British National Cybersecurity Center and the British privacy watchdog have been notified.
EasyJet states that it was first aware of the attack in January and could only notify customers whose credit card details had been stolen. It added that, now that it had gone public, it had to warn the nine million customers whose email addresses had been stolen to be wary of phishing attacks. The company is supposed to inform everyone involved by May 26, but the news will come out sooner.
“There is no evidence that any personal information of any kind has been misused, but on the recommendation of the ICO, we communicate with the approximately nine million customers whose travel data has been accessed to inform them of protective measures to mitigate the risk of potential phishing . ”
phishing emails
Phishing attempts in which criminals send emails with links to fake web pages that steal personal information have risen exponentially during the coronavirus crisis. Google blocks more than 100 million phishing emails to Gmail users every day.
