Iberia Airlines Hit by Data Breach Exposing Customer Personal Details

Brownie2019

Brownie2019

Level 23
Thread author
Verified
Well-known
Forum Veteran
Mar 9, 2019
969
4,663
2,168
Germany
Content source
https://gbhackers.com/iberia-airlines-hit-by-data-breach/
Iberia Líneas Aéreas de España has disclosed a significant security incident involving unauthorized access to systems operated by an external service provider.

The breach has exposed sensitive personal information belonging to the airline’s customers, including names, email addresses, and Iberia Club loyalty program identification numbers.

According to the airline’s official notification, the unauthorized access occurred through systems maintained by one of their external providers.
Click to expand...
Full Story:
gbhackers.com

Iberia Airlines Hit by Data Breach Exposing Customer Personal Details

Iberia Líneas Aéreas de España has disclosed a security incident involving unauthorized access to systems operated by an external service provider.
gbhackers.com gbhackers.com
 
  • Wow
  • Like
Reactions: Sorrento and harlan4096
Brownie2019 said:
Full Story:
gbhackers.com

Iberia Airlines Hit by Data Breach Exposing Customer Personal Details

Iberia Líneas Aéreas de España has disclosed a security incident involving unauthorized access to systems operated by an external service provider.
gbhackers.com gbhackers.com
Click to expand...
Thanks for sharing this – these third‑party breaches are becoming a pattern.

What this incident likely means for Iberia customers
From the info you posted, the exposed data appears to be:
  • Name
  • Email address
  • Iberia Plus / Club loyalty ID number

That’s bad from a privacy and phishing perspective, but it’s less serious than if passwords or payment data were confirmed leaked. Based on your quote, there’s no clear indication that:
  • Account passwords
  • Payment card details
  • Government IDs (passport, ID card, etc.)
were part of the breach – but unless Iberia explicitly states “not affected”, it’s safer to assume you should be cautious.

Also, the fact it happened via an external provider fits the usual “supply chain / third‑party” risk pattern.

Practical steps if you’re an Iberia or Iberia Plus customer

  • Expect targeted phishing
    Attackers now potentially have your:
    • Name
    • Email
    • Loyalty ID and the knowledge you’re an Iberia customer
    So they can craft very convincing emails about:
    • “Iberia Plus account verification”
    • “Miles/Avios bonus” or “Your miles are expiring”
    • “Security update required” with fake login links
    Do not click links in such emails. Instead, go directly to Iberia’s official site/app and log in from there.
  • Change your Iberia password (and anywhere you reused it)
    Even if Iberia says passwords weren’t affected, now is a good time to:
    • Change your Iberia / Iberia Plus password
    • Change it on any other site where you reused the same or similar password
    • Use a strong, unique password (ideally via a password manager)
  • Enable 2FA/MFA if available
    If Iberia (or your IAG/Avios account) supports:
    • App‑based 2FA (TOTP)
    • SMS codes
    enable it. It won’t stop phishing completely, but it makes account takeover harder.
  • Monitor your loyalty account
    Check your Iberia Plus / Avios account for:
    • Unfamiliar logins (if they show login history)
    • Unrecognized bookings
    • Unexpected Avios redemptions
    Report anything suspicious to Iberia immediately.
  • Harden your email account
    Since email is exposed:
    • Make sure your email password is unique and strong
    • Turn on 2FA for your email account – this is critical, as email compromise lets attackers reset other accounts
  • Watch for other scams
    Scammers might use your name + airline association for:
    • Fake “compensation” or “class action” offers
    • Fake customer surveys with reward promises
    • Requests for card details “to refund a ticket”
    Never give payment details or full personal data via links or phone numbers that come to you; always verify via Iberia’s official contact channels.

About the mentioned Auth0 / provider angle
The article you linked refers to “unauthorized access through systems maintained by an external provider” and mentions an Auth0 PHP issue. I don’t have direct access to Iberia’s internal statement or the provider’s identity, so I can’t confirm the exact technical root cause. At this point, I’d treat this as:
  • A classic “third‑party integration” problem
  • Potentially impacting multiple customers of that provider, not only Iberia

What I’d watch for next

  • Iberia’s official incident page or FAQ (often linked in their emails about the breach)
  • Whether they clearly state:
    • If passwords/payment data were or weren’t impacted
    • What data types were definitely not affected
    • Any free credit monitoring / identity protection they might offer (more common in some regions)

If you post a screenshot or text of Iberia’s official email/notice (with personal details removed), it might be possible to give more precise advice based on exactly what they confirm or deny in their wording.
 
  • Like
Reactions: Sorrento
There soon wont be any details any of us have left to harvest, but then we will be back to square one!
 
You must log in or register to reply here.

You may also like...