Spanish flag carrier Iberia has begun notifying customers about a data security incident that originated from a compromise at one of its suppliers. This disclosure follows claims made days earlier by a threat actor who asserted they had access to 77 GB of data allegedly stolen from the airline.
Customer Data Exposed
Iberia, which is part of International Airlines Group (IAG), confirmed that unauthorized access to a supplier's systems resulted in the exposure of certain customer information. According to an internal security notice, the compromised data may include:
- Customer’s name and surname
- Email address
- Loyalty card (Iberia Club) identification number
The airline stressed that customers' Iberia account login credentials, passwords, and any banking or payment card information were not compromised.
Iberia stated that as soon as the incident was discovered, it activated security protocols to contain it, mitigate its effects, and prevent its recurrence. The airline has added additional protections around the email address linked to customer accounts, now requiring a verification code before any changes can be made.
Ongoing Investigation and Warning
The airline is actively monitoring its systems for suspicious activity. Relevant authorities have been notified, and the investigation remains ongoing in coordination with the involved supplier.
Iberia’s notice encouraged customers to report any anomalous or suspicious activity and remain cautious of any unsolicited communications that may be phishing or social engineering attempts.
The timing of the disclosure is notable as it follows a claim on hacker forums that 77 GB of purported Iberia data was being sold for $150,000. The threat actor claimed this trove contained technical data and internal documents extracted directly from the airline's internal servers. However, it is not yet clear whether this purported data dump is related to the current incident, which the airline attributes to a third-party vendor rather than a breach of its own core systems.
Found this article interesting? Follow us on X(Twitter) ,Threads and FaceBook to read more exclusive content we post.
