Cyber Attack cyber

GlobalX Airlines

May 7, 2025 2 min read
GlobalX Airlines

In March, the hacktivist collective Anonymous targeted GlobalX Airlines in retaliation for the U.S. government’s decision to deport alleged members of the Venezuelan gang Tren de Aragua. The attackers launched a distributed denial-of-service (DDoS) operation that disrupted and defaced the airline’s public website, preventing customers from accessing booking tools and flight schedules for several hours. Concurrently, Anonymous exfiltrated the company’s flight manifest report, exposing sensitive passenger information such as names, contact numbers, crew details and other flight data. This stolen dataset was later cited by independent outlet 404 Media as evidence in a class action lawsuit aiming to block the forced removal of the accused gang members. Although GlobalX has since restored website functionality and taken measures to secure its infrastructure, the incident underscores significant lapses in the protection of personal data and raises concerns about potential identity theft, legal liabilities and damage to the carrier’s reputation. The breach also follows a related incident in which Anonymous released 10 TB of data purportedly containing corruption files and Trump-related information stolen from the Russian government, highlighting the group’s capacity for large-scale cyber intrusions.

Source: https://www.scworld.com/brief/globalx-compromised-by-anonymous-hackers

TPRM report: https://scoringcyber.rankiteo.com/company/global-crossing-airlines

"id": "glo522050725",
"linkid": "global-crossing-airlines",
"type": "Cyber Attack",
"date": "5/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Aviation',
                        'name': 'GlobalX Airlines',
                        'type': 'Airline'}],
 'attack_vector': 'DDoS, Data Exfiltration',
 'data_breach': {'data_exfiltration': True,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Names',
                                              'Contact numbers',
                                              'Crew details',
                                              'Other flight data']},
 'date_detected': 'March',
 'description': 'In March, the hacktivist collective Anonymous targeted '
                'GlobalX Airlines in retaliation for the U.S. government’s '
                'decision to deport alleged members of the Venezuelan gang '
                'Tren de Aragua. The attackers launched a distributed '
                'denial-of-service (DDoS) operation that disrupted and defaced '
                'the airline’s public website, preventing customers from '
                'accessing booking tools and flight schedules for several '
                'hours. Concurrently, Anonymous exfiltrated the company’s '
                'flight manifest report, exposing sensitive passenger '
                'information such as names, contact numbers, crew details and '
                'other flight data. This stolen dataset was later cited by '
                'independent outlet 404 Media as evidence in a class action '
                'lawsuit aiming to block the forced removal of the accused '
                'gang members. Although GlobalX has since restored website '
                'functionality and taken measures to secure its '
                'infrastructure, the incident underscores significant lapses '
                'in the protection of personal data and raises concerns about '
                'potential identity theft, legal liabilities and damage to the '
                'carrier’s reputation. The breach also follows a related '
                'incident in which Anonymous released 10 TB of data '
                'purportedly containing corruption files and Trump-related '
                'information stolen from the Russian government, highlighting '
                'the group’s capacity for large-scale cyber intrusions.',
 'impact': {'brand_reputation_impact': 'Significant',
            'data_compromised': ['Names',
                                 'Contact numbers',
                                 'Crew details',
                                 'Other flight data'],
            'downtime': 'Several hours',
            'identity_theft_risk': 'High',
            'legal_liabilities': 'Class action lawsuit',
            'operational_impact': 'Disruption of booking tools and flight '
                                  'schedules',
            'systems_affected': ['Public website']},
 'motivation': 'Retaliation for U.S. government’s decision to deport alleged '
               'members of the Venezuelan gang Tren de Aragua',
 'references': [{'source': '404 Media'}],
 'regulatory_compliance': {'legal_actions': 'Class action lawsuit'},
 'response': {'remediation_measures': 'Restored website functionality and '
                                      'taken measures to secure its '
                                      'infrastructure'},
 'threat_actor': 'Anonymous',
 'title': 'Anonymous Hacktivist Attack on GlobalX Airlines',
 'type': 'Distributed Denial-of-Service (DDoS) Attack and Data Exfiltration'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.