In March, the hacktivist collective Anonymous targeted GlobalX Airlines in retaliation for the U.S. government’s decision to deport alleged members of the Venezuelan gang Tren de Aragua. The attackers launched a distributed denial-of-service (DDoS) operation that disrupted and defaced the airline’s public website, preventing customers from accessing booking tools and flight schedules for several hours. Concurrently, Anonymous exfiltrated the company’s flight manifest report, exposing sensitive passenger information such as names, contact numbers, crew details and other flight data. This stolen dataset was later cited by independent outlet 404 Media as evidence in a class action lawsuit aiming to block the forced removal of the accused gang members. Although GlobalX has since restored website functionality and taken measures to secure its infrastructure, the incident underscores significant lapses in the protection of personal data and raises concerns about potential identity theft, legal liabilities and damage to the carrier’s reputation. The breach also follows a related incident in which Anonymous released 10 TB of data purportedly containing corruption files and Trump-related information stolen from the Russian government, highlighting the group’s capacity for large-scale cyber intrusions.
Source: https://www.scworld.com/brief/globalx-compromised-by-anonymous-hackers
TPRM report: https://scoringcyber.rankiteo.com/company/global-crossing-airlines
"id": "glo522050725",
"linkid": "global-crossing-airlines",
"type": "Cyber Attack",
"date": "5/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"