The website of GlobalX Air, a US-based airline used for deportation flights, was defaced by actors claiming affiliation with Anonymous. During the incident, attackers replaced the homepage content with a message accusing the airline of ignoring judicial orders related to deportation rulings. In addition to the defacement, the threat actors exfiltrated sensitive files, including complete flight records and passenger manifests for all customers—covering illegal immigrants and other passengers. The stolen data was subsequently shared with select media outlets, exposing granular details about who was deported, along with dates and destinations. This breach not only undermines the confidentiality of passenger information but also reveals operational details about deportation flights used by the US government. The exposure of personal and travel data raises significant privacy concerns, potentially enabling identity theft, targeted harassment, or geopolitical risks for affected individuals. Following the attack, the website was restored to its original state, but the scope of data loss remains a serious liability for the airline and its customers.
Source: https://www.techradar.com/pro/security/website-for-us-deportation-airline-globalx-defaced-by-hackers
"id": "glo847050725",
"linkid": "global-crossing-airlines",
"type": "Breach",
"date": "5/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"