Author Topic: Easyjet Security Breach  (Read 130 times)

Al

  • YaBB God
  • *****
  • Offline Offline
  • Posts: 1594
Easyjet Security Breach
« on: May 23, 2020, 08:29:17 am »
This year things just get better and better. Easyjet have just e-mailed me to let me know they have have had a cyber security attack.

"
Notice of cyber security incident – be alert to phishing emails


Dear Customer,
I wanted to write to you personally in regards to a recent cyber security incident at easyJet.
As you may have heard, we announced on 19th May 2020 that we were the target of an attack from a highly sophisticated source. As soon as we became aware of the attack, we took immediate steps to manage and respond to the incident, closing off the unauthorised access. We engaged leading forensic experts to investigate the issue and we also notified the National Cyber Security Centre and the Information Commissioner’s Office (ICO).
Our investigation found that your name, email address, and travel details were accessed for the easyJet flights or easyJet holidays you booked between 17th October 2019 and 4th March 2020. Your passport and credit card details were not accessed, however information including where you were travelling from and to, your departure date, booking reference number, the booking date and the value of the booking were accessed.
We are very sorry this has happened.
Please be extra careful about phishing attacks
There is no evidence that personal information of any nature has been misused but please do be extra careful if you receive any unsolicited communications, particularly if they claim to be from either easyJet or easyJet holidays. Please note that we will never contact you unprompted to ask for your account details or security information, and we will never ask you to disclose your passwords, or to change your passwords on your easyJet account.
You do not need to take any action apart from continuing to be alert as you would normally be, especially with any unsolicited communications. To help you stay safe online, please remember:
- Do not open emails or attachments if you have any questions on the source
- Make sure you know who you are dealing with before disclosing any personal information online
- Always check links before clicking on them – you can do this by hovering over the link to see whether the source is recognisable. Do not click any link if you are unsure
The ICO has very helpful information on its website, including an article related to phishing posted on 31st March 2020 entitled ‘Stay One Step Ahead of the Scammers’. The National Cyber Security Centre likewise has useful guidance, including an article entitled ‘Phishing attacks: dealing with suspicious emails and messages’.
 
More information on the cyber incident with easyJet can be found on our website. Additionally, if you have any further questions, please email us at infoalert@easyjet.com
Once again, we’re sorry that this attack has happened. We do take the safety and security of our customers’ information very seriously and will continue to take every action to protect it against any future attacks."

tony welsh

  • YaBB God
  • *****
  • Offline Offline
  • Posts: 981
    • www.photobucket.com
Re: Easyjet Security Breach
« Reply #1 on: May 23, 2020, 09:22:05 am »
I had my Easyjet e-mail confirmation of the breach yesterday but thankfully I wasn’t one of the few thousand that had their card and passport details accessed but my planned travel dates and locations were 😤😤😤😤😤

mari

  • YaBB God
  • *****
  • Offline Offline
  • Posts: 869
Re: Easyjet Security Breach
« Reply #2 on: May 23, 2020, 02:40:42 pm »
This year things just get better and better. Easyjet have just e-mailed me to let me know they have have had a cyber security attack.

"
Notice of cyber security incident – be alert to phishing emails


Dear Customer,
I wanted to write to you personally in regards to a recent cyber security incident at easyJet.
As you may have heard, we announced on 19th May 2020 that we were the target of an attack from a highly sophisticated source. As soon as we became aware of the attack, we took immediate steps to manage and respond to the incident, closing off the unauthorised access. We engaged leading forensic experts to investigate the issue and we also notified the National Cyber Security Centre and the Information Commissioner’s Office (ICO).
Our investigation found that your name, email address, and travel details were accessed for the easyJet flights or easyJet holidays you booked between 17th October 2019 and 4th March 2020. Your passport and credit card details were not accessed, however information including where you were travelling from and to, your departure date, booking reference number, the booking date and the value of the booking were accessed.
We are very sorry this has happened.
Please be extra careful about phishing attacks
There is no evidence that personal information of any nature has been misused but please do be extra careful if you receive any unsolicited communications, particularly if they claim to be from either easyJet or easyJet holidays. Please note that we will never contact you unprompted to ask for your account details or security information, and we will never ask you to disclose your passwords, or to change your passwords on your easyJet account.
You do not need to take any action apart from continuing to be alert as you would normally be, especially with any unsolicited communications. To help you stay safe online, please remember:
- Do not open emails or attachments if you have any questions on the source
- Make sure you know who you are dealing with before disclosing any personal information online
- Always check links before clicking on them – you can do this by hovering over the link to see whether the source is recognisable. Do not click any link if you are unsure
The ICO has very helpful information on its website, including an article related to phishing posted on 31st March 2020 entitled ‘Stay One Step Ahead of the Scammers’. The National Cyber Security Centre likewise has useful guidance, including an article entitled ‘Phishing attacks: dealing with suspicious emails and messages’.
 
More information on the cyber incident with easyJet can be found on our website. Additionally, if you have any further questions, please email us at infoalert@easyjet.com
Once again, we’re sorry that this attack has happened. We do take the safety and security of our customers’ information very seriously and will continue to take every action to protect it against any future attacks."

That's terrible apparently this type of crime on the up now unfortunately  :'( my partner was a victim of fraud years ago found out from his credit report must have got 20k of debt in his name just be careful

Al

  • YaBB God
  • *****
  • Offline Offline
  • Posts: 1594
Re: Easyjet Security Breach
« Reply #3 on: May 23, 2020, 03:26:20 pm »
Does not mention anything about getting your home address so hopefully all OK.
Unfortunately as they got our e-mail address,  I guess  I am going to get even more Bitcoin, Keto Diet and that very gorgeous  lady who lives nearby, who really wants you to pop round  e-mails  ;)

Mike

  • YaBB God
  • *****
  • Offline Offline
  • Posts: 2227
    • My Photos
Re: Easyjet Security Breach
« Reply #4 on: May 27, 2020, 02:30:17 pm »
That's terrible apparently this type of crime on the up now unfortunately  :'( my partner was a victim of fraud years ago found out from his credit report must have got 20k of debt in his name just be careful

I had my identity stolen quite a few years back and happened to be stopped right outside my house with a blowing exhaust. I don't know who'd stolen it (other than that he lived in Norfolk) but the policeman took my licence back to his car and was on his radio for a bit then came back to me to ask why I was driving while disqualified; while I was explaining that I wasn't two additional units arrived with lights flashing. Was then told I was being taken in for questioning and I could go to Exeter (15 miles away) if I wanted legal representation or the local station if I didn't. I said as I'd done nothing wrong the local one was fine so they loaded me in the back of a van. Spent a very short time in a cell, matter of minutes, before being presented to the sergeant on duty; he asked to see my tattoos and I said I don't have any so he asked me to take off my shirt which I did and they finally accepted that I wasn't public enemy number one and apologised profusely, told me they'd correct the anomaly in their records and gave me a lift home. We lived at the end of a cul-de-sac and I'm damn sure some of the neighbours must have seen but I never told them what happened ;D.
Not been stopped since so I hope they were true to their word and put my "record" straight, I'll find out if I ever get stopped again I guess.