A significant
EgyptAir cyberattack has allegedly targeted the national flag carrier of
Egypt, with a threat actor advertising stolen data on the dark web.
The individual, operating under the pseudonym "quellostanco," posted on a cybercrime forum, claiming to possess a full database extracted from the airline's systems.
While the breach is currently pending verification, the detailed nature of the advertised dataset suggests a potentially severe compromise of internal networks.
The exposed information
allegedly includes:
- Employee and applicant data,
- user and admin accounts with cleartext passwords,
- national ID numbers,
- personal details,
- documents from staff email inboxes.
If valid, the exposure of cleartext passwords indicates a
failure in basic credential management protocols. This incident underscores the growing
vulnerability of aviation cybersecurity infrastructure, as the airline industry relies heavily on interconnected digital systems for recruitment and operations.
A threat actor claims to be selling a stolen EgyptAir database containing 104,000 records, including cleartext passwords and HR data.
www.technadu.com
