HQ/EMEAFind out how we can help your business
The Scandinavian Airlines has published a notice that warns its passengers that a recent cybersecurity incident has caused the unavailability of its website and exposed customer data.
Based on reports, the cyberattack disrupted the airline’s online system, exposing passenger data to other passengers. The data leak includes previous and upcoming flights, contact details, and the last four digits of credit card numbers.
An airline representative posted that their organisation was subject to a cyberattack that disrupted their website and applications for hours. In addition, some of their passengers’ information became accessible to other active passengers during the incident.
This airline company operates a fleet of over 100 aircraft and carries passengers to nearly 170 destinations internationally. The company claimed that the risk of the recent exposure is minimal since the leaked financial details are only a portion of the complete information; hence, threat actors cannot exploit it easily.
The passengers’ full names and contact information could allow the threat actors to execute a targeted phishing campaign.
Anonymous Sudan claimed responsibility for the attack against Scandinavian Airlines.
According to investigations, a hacktivist group dubbed Anonymous Sudan claimed in a Telegram statement that they breached the Scandinavian Airlines.
The group explained that they attacked the airline last month in retaliation for the incident at the Turkish embassy in Stockholm, Sweden. The incident started when the group burned the Holy Quran’s copy to protest Turkey’s objection to Sweden’s NATO membership bid.
The behaviour has drawn disapproval from the Muslim community globally. Therefore, the Scandinavian airline became the group’s primary target since it is the flagship carrier of Sweden, Denmark, and Norway.
In a related incident, the same hacktivist group struck SVT last week, which forced Sweden’s national public television broadcaster to suffer an outage.
The hacktivist group has clarified that their intention is just retaliation for a recent activity that is not relevant to their religion. However, they expressed disappointment with Sweden by hacking one of their trusted carriers.
