EasyJet hack steals data from 9 million customers and thousands of credit card numbers

• Click to share on Facebook (Opens in a new window)
• Click to share on Twitter (Opens in a new window)
• Click to share on LinkedIn (Opens in a new window)
• Click to email a friend (Opens in a new window)

Five keys to avoid being a victim of a hacker 1:00

(CNN Business) - Cybercriminals have stolen information from millions of EasyJet customers, including more than 2,000 credit card numbers, the low-budget airline said in a statement Tuesday.

An "sophisticated source" accessed the email address and travel details of approximately 9 million customers, as well as credit card data belonging to 2,208 of them, the company said.

• READ: Cybercriminals try to wreak havoc during global pandemic

EasyJet did not mention when the cyber attack occurred. The airline that was contacting all affected customers to offer support, and that was working with the Office of the Information Commissioner of Great Britain (ICO) and the National Center for Cyber ​​Security.

EasyJet CEO Johan Lundgren apologized to customers and cited the coronavirus pandemic as a possible incentive for hackers.

"Since we learned of the incident, it has become clear that because of covid-19 there is intense concern about the use of personal data for online scams," Lundgren said. "As a result, and on the recommendation of the ICO, we are contacting those clients whose travel information was exposed and we have recommended that they be very vigilant, especially if they receive unsolicited communications," he added.

The ICO told CNN Business that it continues to investigate the incident.

“People have the right to expect organizations to handle their personal information in a safe and responsible manner. When that does not happen, we will investigate and take firm action if necessary, ”said an agency spokesperson.

“Anyone affected by the data breaches must be especially alert to possible electronic fraud and scam messages. We have posted tips on our website on how to detect potential fraud emails, ”added the spokesperson.

• LOOK: 7 of the biggest hacks in history

Since March, EasyJet has grounded its 334 aircraft, which are in Europe, as a result of travel restrictions across the region due to the pandemic. And it only operates rescue flights to repatriate citizens.

The airline has not confirmed when it will start flying again, and informed customers that it is currently canceling flights seven days in advance, although travel reservations are available on the company's website starting May 29.

Cyber ​​Attack Cybersecurity EasyJet Hacking