2023-10-12 15:47:50
He cyber attack on Air Europa was starred by ‘hackers’ of Russian origin who They entered the airline’s servers at its headquarters in Mallorcain Lucmajorhas been able to know Mallorca Diaryfrom the Prensa Ibérica group, Air Europa internal sources on the island.
The infiltration, the second that the company has suffered since 2018, occurred, according to detail the same sources consultedin between September 26 to 29re and compromised the information of some 100,000 customer bank cardsalthough it was not until Tuesday that Air Europa raised the alarm.
The compromised information of the 100,000 bank cards of Air Europa customers affected the data that these customers use to make payments when purchasing plane tickets: the card number, its expiration date and the three check digits.
After raising the alarm on Tuesday, Air Europa sent an email to the holders of the affected cards so that they were canceled immediately, although there is still no evidence of irregular charges fruit of the Russian cyberattack on the airline’s servers at its headquarters in Llucmajor.
“In order to protect your interests, we recommend that you follow the following steps,” the airline said in the aforementioned email. From here, he listed a series of preventive measures that his clients should follow in order to avoid a problem of fraudulent use in their bank accounts. Thus, he asked to identify the card used to make payment on the company’s website and contact the bank to request the “cancellation, cancellation or replacement of that card in order to avoid possible fraudulent use of your information.n“.
Los banks of Mallorca received after the Air Europa alarm a flood of queries to know how they should proceed with the bank cards of Air Europa customers who received the communication about infiltration. Some affected people informed this newspaper that the Cancellation and renewal of the card entailed an extra cost of six euros in the processing. The credit cards of Air Europa hired by clients through Bankintercard and what they mean to their owners benefits and discounts on flights were automatically locked without request of the owner, sas reported by an affected customer for this security decision.
Infiltration with the web skimming technique
As reported this Wednesday by the digital newspaper El Confidencial, Air Europa has requested a report from the Deloitte consultant, company that, despite being one of the most qualified in this matter, also suffered a global cyber attack in 2017, which affected millions of internal emails.
Once you have this correct x-ray of what has happenedthe airline, which was fined 600,000 euros for the previous problem in 2018, will take additional measures and activate liability insurance. On that occasion, the fraudulent use of 4,000 cards was detected, just under 1% of those stolen.
According to El Confidencial, based on the three computer security experts it has consulted, the ifiltration would have occurred using the technique of web skimming. It consists of accessing the company’s servers and modifying the source code of the page where they ask you to enter your card information. When this data is sent, that page makes a call to the payment gateway. Everything seems normal, explains the digital newspaper, but also transmits the data to an attackers server. Let’s say that they are collecting them in real time as people buy tickets, he explains to the newspaper. Ramon Medranospecialist in cybersecurity and privacy.
“The cyberattack may have had blackmail as its object, but we do not rule out that the stolen data has been sold on the dark web, so the possibilities of being the target of fraud and theft of funds are multiplied.“, considered, for its part, the Association of Financial Users (Asufin) in a statement issued on Tuesday.
#Russian #hackers #attacked #Air #Europas #servers #headquarters #Mallorca