EasyJet hit by cyberattack on 9m travellers

EasyJet has been the target of a major cyber attack which has seen hackers access details of nine million customers, including credit card details in a handful of cases

The budget airline said the attack, which came ‘from a highly sophisticated source’, was under investigation by forensic experts and has been reported to the Information Commissioners Office (ICO).

Its preliminary investigation indicated that, for a very small subset of customers (2,208), credit card details were accessed.   Action has already been taken to contact all of these customers, with the remainder of those affected to be contacted by a deadline of 26 May.

Johan Lundgren, easyJet CEO, said: ‘We take the cyber security of our systems very seriously and have robust security measures in place to protect our customers' personal information. However, this is an evolving threat as cyber attackers get ever more sophisticated.

‘Since we became aware of the incident, it has become clear that owing to Covid-19 there is heightened concern about personal data being used for online scams. 

‘As a result, and on the recommendation of the ICO, we are contacting those customers whose travel information was accessed and we are advising them to be extra vigilant, particularly if they receive unsolicited communications.’

Be the first to vote