Plus, hardware wallets are found to be hackable and a ransomware group says it’s targeting scammers
British budget airline easyJet told the BBC that it is in the process of alerting 9 million customers about a data breach that occurred in January, exposing their email addresses and travel details. EasyJet reported that about 2,200 customers also had their credit card numbers stolen, including security codes, and that the company alerted those customers in early April. Regarding the 3-month delay before alerting victims, a spokesman for the airline commented, “This was a highly sophisticated attacker. It took time to understand the scope of the attack and to identify who had been impacted.”
Avast security evangelist Luis Corrons points out that in 2018, British Airways suffered a similar breach for 15 days. “It was discovered on September 5th,” he says. “And the company made it public one day later. EasyJet took more than 3 months, which doesn’t make its cybersecurity capabilities look good.”
The airline did not share details of the attack, but under the General Data Protection Regulations (GDPR), easyJet could face fines of up to 4% of its annual revenue if it is found to have mishandled customer data. The airline said that all affected customers of the breach will be notified by May 26 and that they are providing protective steps to deflect any phishing attempts, such as bad actors pretending to be easyJet.
Cryptocurrency hardware wallets are physically hackable
New research reveals that cryptocurrency hardware wallets can be compromised by a hacker who has ph ..
Support the originator by clicking the read the rest link below.
