Data breach also saw attackers access the credit card details of 2,208 users

EasyJet admitted today that “highly sophisticated” hackers had breached its systems, accessing email addresses and travel details and up to 2,208 also had their credit card details exposed.

EasyJet says it has seen “no evidence” that the stolen data has been misused, but is warning customers to be cautious of any communications, particularly those purporting to come from EasyJet or EasyJet Holidays.

EasyJet CEO Johan Lundgren said: “We take the cyber security of our system very seriously and have robust security measures in place to protect our customers’ personal information. “Since we became aware of the incident, it has become clear that owing to COVID-19 there is heightened concern about personal data being used for online scams. As a result, and on the recommendation of the ICO, we are contacting those customers whose travel information was accessed and we are advising them to be extra vigilant.

“We would like to apologise to those customers who have been affected by this incident.”

EasyJet, which will contact customers affected by the cyber security incident by 26 May, says it has notified the Information Commissioner’s Office and National Cyber Security Centre (NCSC) about the breach and has “closed off this unauthorised access to its systems”.

Are your systems secure? We offer External Penetration Tests where we break down the what, why, and where, also know as “ethical hacking.” Give our Cyber Security Team a call on 0345 450 9393 today, before it is too late.