As if airlines didn’t already have enough problems, now EasyJet is reporting a massive hack of its system, wherein the information of millions of passengers was stolen. According to a statement from the UK-based budget airline, a “sophisticated source” accessed the email addresses and travel details of around nine million passengers, and the credit card numbers of 2,208.
The BBC reported that the airline became aware of the attack in January.
Johan Lundgren, the airline’s CEO, cited the pandemic as a possible reason for the hack, and apologized to customers. “Since we became aware of the incident,” he said, “it has become clear that owing to Covid-19 there is heightened concern about personal data being used for online scams. As a result, and on the recommendation of the ICO [Information Commissioner’s Office], we are contacting those customers whose travel information was accessed and we are advising them to be extra vigilant, particularly if they receive unsolicited communications.”
The UK ICO is investigating the incident, and told CNN, “People have the right to expect that organizations will handle their personal information securely and responsibly. When that doesn’t happen, we will investigate and take robust action where necessary.”
If you were affected by the hack, you will be contacted directly by EasyJet. In the meantime, the airline recommends that customers be wary of phishing attacks and communications coming from EasyJet or EasyJet Holidays.