April 6, 2018 by

Delta Airlines Admits to Data Breach of ‘Several Hundred Thousand’ Customers

Major airline operator Delta has said that a cyberattack targeting a third-party contractor has potentially exposed the payment details of “several hundred thousand customers”.

In a statement, Delta has said that payment-card information for about “several hundred thousand” airline customers may have been exposed by a malware-laden data breach that also struck the likes of Sears and other companies. The data breach occurred between September 26 and October 12 at a third-party vendor called [24]7.ai with unauthorized access to customers’ details including names, addresses, CVV numbers, expiration dates and payment-card related information. The third-party vendor provides online chat services to Delta and notified the carrier and other clients last week.

The Atlanta-based airline said it wasn’t sure if customers’ information was compromised by the malware for about two weeks, a day after stating only a “small subset” of customers were affected by the attack.

The breach also impacts Sears, the operator of Kmart stores, saying in a statement that it learned of the problem sometime in mid-March before notifying credit-card companies of potential fraud.

The incident joins a growing list of US companies impacted by data breaches in industries including retailers Under Armour, Hudson Bay, aerospace giant Boeing and electrical and natural gas pipeline utilities.

Delta has currently engaged federal law enforcement agencies and forensic teams, ABC News reports.

Image credit: Pixabay.

About the author

Image of Author

LIFARS is the global leader in Digital Forensics and Cyber Resiliency Services. Our experience spans two decades working on high profile events, often in concert with Law Enforcement Agencies around the world. Our proprietary methodology derives directly and indirectly from our experience working with and for U.S. Intelligence Agencies, Interpol, Europol, and NATO. We are solely dedicated to Cyber Resiliency and thus pay close attention to all aspects of our clients’ engagements experience while providing a strategic and integrated array of services to minimum risk and disruption while protecting your brand.

Related articles

US Health Department Outlines Breach Notification Guidelines

The US Department of Health & Human Services (HHS) has clarified its requirements for entities...

Read more arrow_forward

Panera Bread Breach Could Affect Over 37 Million Customer Records

Popular bakery chain Panera Bread has been leaking millions of customer records in the for at least...

Read more arrow_forward

Hackers Steal 5 Million Payment Cards in Saks, Lord & Taylor Data Breach

The ongoing wave of large-scale retail data breaches isn’t about to come to an end any time soon...

Read more arrow_forward