- Unidentified hackers gain access to Air France and KLM through a third -party provider
- The striker stole names, contact information and more
- Passport data was not compromised
Air France and KLM Royal Dutch Airlines have recently confirmed to have some cyberattacks where both airlines lost sensitive customer data.
The companies, both owned by the same carrier, sent notification of data violation to affected customers and in a statement that was shared with TweakersKLM said the incident happened when threat players broke into a third -party provider.
“Unusual activity was detected on a third-party platform used by our contact centers, which led our IT security team along with the third-party system involved to quickly implement corrective measures to put an end to the incident,” the company also told Cygenerws.
Was it scattered spider?
We do not know exactly how many people were affected by the violation, but airlines are transporting more than 80 million people each year.
The information stolen in this attack includes people’s full names, contact information, flying blue numbers and levels and subject lines for service request -e emails.
Fortunately, passport numbers, debit card information, passwords or flying blue miles (the airline’s loyalty program) were not stolen.
There was no word about attackers and no one assumed responsibility for the attack.
At the end of June 2025, however, the FBI warned spider hackers now targeting the airlines.
Scattered Spider Works by mimicking the company’s staff and convincing support staff from the IT department that they lost access to their business accounts.
After gaining initial access, they map the business, identify individuals at a high level and then repeat the process until they have access to accounts through which they can steal data.
The Hacking group hit Qantas in early July 2025, and Hawaiian Airlines in late June, and Russian Aeroflot, American Globalx and Canadian Westjet have all suffered similar events in recent months.
