Kenya Airways Ltd. experienced a significant ransomware attack resulting in the internet leakage of private company data.
Some data samples taken during the attack were recently released by the hacker collective Ransomexx.
In addition to death certificates, accident reports, passport applications, and airline plans, the leaked data also contains information about the airline's previous passengers and its investigative operations.
Online leaks have purportedly revealed confidential data that was dubiously taken from Kenya Airlines' (KQ) digital systems.
Source: https://www.benjamindada.com/kenya-airways-hacked-ransomexx/
TPRM report: https://scoringcyber.rankiteo.com/company/kenya-airways
"id": "ken223921124",
"linkid": "kenya-airways",
"type": "Ransomware",
"date": "01/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'Aviation',
'location': 'Kenya',
'name': 'Kenya Airways Ltd.',
'type': 'Airline'}],
'data_breach': {'data_exfiltration': True,
'personally_identifiable_information': True,
'type_of_data_compromised': ['death certificates',
'accident reports',
'passport applications',
'airline plans',
'previous passengers information',
'investigative operations']},
'description': 'Kenya Airways Ltd. experienced a significant ransomware '
'attack resulting in the internet leakage of private company '
'data.',
'impact': {'data_compromised': ['death certificates',
'accident reports',
'passport applications',
'airline plans',
'previous passengers information',
'investigative operations']},
'motivation': 'Data Theft and Ransom',
'ransomware': {'data_exfiltration': True},
'threat_actor': 'Ransomexx',
'title': 'Kenya Airways Ransomware Attack',
'type': 'Ransomware Attack'}