Due to unauthorized access to its customers' credit card information by threat actors, Air Europa has announced a data breach and advised them to cancel their credit cards.
Credit card information (card numbers, expiration dates, and the CVV (Card Verification Value) code) was among the financial data exposed in the security breach.
Customers of Air Europa are advised to exercise caution, as threat actors may utilize the exposed data in spear-phishing attacks and other fraud schemes.
The business declared that it had used all of its resources to contain the situation and had taken the essential organizational and technical precautions.
Source: https://securityaffairs.com/152316/data-breach/airline-air-europa-data-breach.html
TPRM report: https://scoringcyber.rankiteo.com/company/air-europa
"id": "air2246151023",
"linkid": "air-europa",
"type": "Data Leak",
"date": "10/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Aviation',
'name': 'Air Europa',
'type': 'Company'}],
'attack_vector': 'Unauthorized Access',
'customer_advisories': 'Advised customers to cancel their credit cards and '
'exercise caution',
'data_breach': {'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Credit Card Information']},
'description': "Unauthorized access to customers' credit card information by "
'threat actors, leading to a data breach and advisory to '
'cancel credit cards.',
'impact': {'data_compromised': ['Credit Card Information',
'Card Numbers',
'Expiration Dates',
'CVV (Card Verification Value) Code'],
'payment_information_risk': True},
'motivation': ['Financial Gain', 'Fraud'],
'response': {'communication_strategy': 'Advised customers to cancel their '
'credit cards and exercise caution',
'containment_measures': ['Technical Precautions',
'Organizational Precautions'],
'incident_response_plan_activated': True},
'title': 'Air Europa Data Breach',
'type': 'Data Breach'}