- Collins Aerospace has suffered a data breach
- This breach may affect passengers at Dublin and Cork airports
- Anyone affected may be at risk of identity theft or fraud
A key supplier to both Dublin and Cork airports has confirmed it has suffered a data breach which is said to involve the passenger details of potentially millions of people who flew through the airports in August 2025.
DAA, the managing authority for the two travel hubs, said Irish Times a data security incident involving third-party supplier Collins Aerospace had resulted in boarding pass information being published online by a “cybercriminal group”.
While the DAA has assured passengers that they do not need to take immediate action, if personal information is disclosed it could put them at risk of identity theft or fraud – so they should monitor their accounts closely for any suspicious activity.
Ongoing investigation
Swedish airline SAS distributed an email warning passengers flying to Dublin or Cork in August 2025 that their details may be affected;
“The affected files included your booking reference, first name, last name and Frequent Flyer number. Based on this information, it is possible that other details associated with your booking – such as contact information and itinerary – could have been accessed. It is possible that this information could be leaked to the public by the unauthorized party.”
So far there is no evidence of any direct impact on the DAA systems themselves and there does not appear to be any disruption to flights or bookings.
There have been a number of high-profile cyber security incidents in recent months, the vast majority of which stemmed from the initial breach of third-party vendors.
Recent research suggests that a third of all cyber-attacks now involve third-party vendors or external platforms, highlighting the challenges security teams now face in ensuring the security not only of their own systems, but also those of their partners.
The best protection against identity theft for all budgets
