Airlines have been a key target for cybercriminals for many years now and in just the last couple of months we have witnessed attacks on TAP Portugal, Pegasus and now American Airlines. The reason airlines are such a prime target, is because attackers have many different avenues to target and damage them. Firstly, there is a huge opportunity to access and steal critical data, like passports, PII and credit cards. While secondly, flaws in aviation systems, like the WiFi vulnerability that was announced last week, can put the physical safety of aeroplanes at risk.

Customers of American Airlines informed that hackers have accessed their personal data from employee email accounts

American Airlines is once again at the centre of a data breach incident, after it notified customers last Friday that their data has been compromised.

American Airlines, the largest air carrier in the U.S., confirmed it suffered a data breach that impacted an unknown number of its customers and employees. The company notified last week, on September 16, that the threat actors accessed email IDs and other personal information.

American Airlines said the data breach took place in early July 2022. Employee and customer data, including names, addresses, dates of birth, phone numbers, email IDs, and documents such as passport numbers, driver’s licenses (numbers), and/or medical information, could have been compromised.

Uber’s computer systems were breached and the company has alerted authorities, the ride-hailing giant said Thursday. The ride-hailing company said in a tweet that it was “responding to a cybersecurity incident.” The hacker surfaced in a message posted in Slack, according to two people familiar with the matter, who spoke on the condition of anonymity because of the sensitive nature of the incident.

On Thursday afternoon, Uber suffered a cyberattack that led the attacker to obtain full access to several of its critical IT systems. Going by what’s known so far, the latest attack seems to be more severe than the attack the company suffered in 2016. Security experts, including senior staff engineer at Yuga Labs, Sam Curry, and Marcus Hutchins of the MalwareTechBlog, said someone posted screenshots of Uber’s admin accounts on AWS and Google Cloud Platform (GCP).