Iberia customers have been informed in the last few hours of asecurity incident affecting the airline’s technological environment. The company has confirmed that an “unauthorized access” to the systems of one of its suppliers was detected, which would have compromised certain personal data.
As reported by Iberia in the email sent to its customers, the leak could have exposed basic information such as names, surnames and emails. The airline assures, however, that passwords, usernames and complete bank card information have not been compromised, assuring that the cybercriminals “have not been able to access the total information of the cards”.
Iberia claims to have immediately activated the security protocols, reinforcing the technical and organizational measures to contain the incident and avoid its repetition. Among the recommendations passed on to users is the modification of the e-mail address associated with the account, a measure that could be uncomfortable for those who use a single address on a regular basis. The company continuously monitors its systems.
77 GB of internal documentation
Specialized cybersecurity media have pointed out in recent days that the leak may have occurred on November 14 and that, in addition, a 77 GB package of internal Iberia documentation is circulating on theDark Web, allegedly put up for sale by the actor responsible for the intrusion. This package would include corporate files, administrative communications and operational information whose exposure could have serious implications for the airline’s security and operations. Iberia, for its part, has confirmed that it is analyzing the authenticity and actual scope of the material released.
The possible leakage of internal documentation aggravates the situation, as it could reveal operational processes, technical configurations and strategic data, however, initially, this information made available for sale on the Dark Web would not contain important customer information.
Experts point out that this incident is part of a growing trend: cybercriminals are directing their efforts towards obtaining and selling corporate information, an increasingly valuable asset for corporate espionage and organized crime. The Dark Web is thus consolidating as a marketplace where this data is traded, exchanged for extortion or even released for free to gain reputation within criminal forums.
Recommendations
In view of this situation, Iberia recommends its customers to be wary of possible fraudulent emails related to the breach and to contact the airline directly in case of any suspicion, either through customer service or through the data protection email oficinaDPO@iberia.es.
