American Airlines Suffers Breach

September 23, 2022

INCIDENT

American Airlines informed some if its customers Friday (September 16) about a security incident that occurred July 5 and resulted in a breach of personal information.
In July the airline found an attacker compromised email accounts of airline workers via a phishing attack and were then able to pivot from there to get in and purloin personal information.
In a letter dated September 16, Russell Hubbard, deputy general counsel and chief privacy and data protection officer at American Airlines said: “We are writing to inform you about a recent incident that involved some of your personal information.

Incident Date

July 5, 2022

Location

United States

Estimated Cost

Unknown, but it was a phishing attack that stole personal information

Victims

Type of Malware

No Malware identified

Threat Source

No threat source identified

References

Industries

Transportation (Includes Logistics, Shipping, Maritime, Rail, Trucking)

Impacts

IT