The data leak involved the airline’s passengers’ identity card and passport information.
The company announced this in an email to customers. Names, birthdays, nationalities, and phone numbers were also exposed. The airline, which works with AirFrance and KLM through the SkyTeam alliance, stressed that there is no evidence that personal data was used fraudulently. “If it were to happen, the resulting inconvenience would be limited in any case,” Air Europa said in the email.
Credit card data
The leak stems from the cyber attack Air Europa faced in 2023. The attack occurred in August 2023 and was reported to customers until October. At the time, the company indicated that sensitive information had been compromised. At issue were credit card numbers, expiration dates, and CCV codes, which are precisely the information needed to make online purchases. The airline advised customers to block credit cards, especially if they had used them to book tickets through the Air Europa website.
Tip: Hack targets Air Europa: customers must block credit cards
Air Europa discovered the cyber attack when it detected suspicious behaviour on one of its systems. The attack took place on its online payment system. In October, however, the airline still assumed that no information other than credit card information had been leaked. It is not known how many customers were affected by the leak.
In 2021, Air Europa also suffered a data breach. At the time, hackers gained access to contact and bank information of nearly half a million passengers.
16 hours ago
