What Happened?

On September 18th, 2023, DAA, the authority managing Dublin and Cork Airports, was notified by Collins Aerospace, a‌ key supplier, of a compromise to its IT systems. The irish​ Times reports that a​ cybercriminal group claimed responsibility for the breach ​and published files containing passenger boarding pass ‌data from August.

While⁣ the⁢ exact number⁣ of passengers ​affected is still being steadfast, the potential impact is notable, reaching into the millions.DAA has stated that passengers who traveled in ⁢August should be alert to any unusual activity related to their‌ bookings, but ⁣currently do not need to take immediate action.

What Data Was Compromised?

The compromised ⁣data specifically includes boarding pass information. This ​data can contain personally identifiable information (PII) such as names, flight details, and potentially⁣ booking reference numbers. The Irish Times notes that the extent of the data exposed is still under investigation.

Potential​ Risks associated with Compromised Boarding Pass Data:

• Identity⁢ Theft: PII can⁣ be used to open fraudulent accounts ​or ⁤make ⁤unauthorized purchases.
• Phishing⁣ Attacks: Cybercriminals‍ can​ use flight details to craft‍ highly⁤ targeted phishing emails, attempting to steal further information.
• Travel Disruption: ​Even though less likely,compromised booking information could potentially be used⁤ to disrupt travel ⁢plans.

DAA’s Response and Investigation

DAA has launched a full investigation into the breach, working with Collins Aerospace and cybersecurity⁤ experts to determine the⁣ scope of ⁢the incident and mitigate further risks. ⁢According ​to a statement ⁢released⁢ by DAA,‍ they‌ are taking ⁣the matter “extremely seriously” and are‍ committed to protecting passenger data.