Listen to this story
The Ragnar Locker gang has leaked personal information of TAP Air Portugal passengers, and it also includes personal data of politicians and the president of Portuguese Rebelo de Sousa. In August, the threat actor launched an attack on the TAP website. However, the airline declined any harm to its customers and had noted that their data was safe.
Unfortunately, the malicious actors have leaked the personal data of TAP passengers on the Ragnar Locker gang’s site on the dark web. The information included a database of over five million records with passengers’ names, dates of birth, email IDs, genders, phone numbers, addresses, frequent flier numbers, and genders of passengers.
Ragnar Locker gang leaked TAP user’s data
Ragnar Locker gang released a post about the TAP breach, stating that they are releasing the data of TAP customers because the airline doesn’t seem to comply with the threat actor. The group claimed the airline attacked its resources instead of cooperating with the actor. Perhaps, one of the biggest things that the Ragnar Locker gang noted was that the data found was not hacked because it was available on the internet without any encryption.
The gang noted, “We have to note especially that all personal information in TAP Air network was not encrypted in any way, just lay in a public file-server in a readable form.
So, you must think twice when signing a user agreement for data processing. Most likely, your private data will be stored as unimportant files, just anywhere and in clear text even on desktop or shared folders.”
Ragnar Locker gang hacks Portuguese government data
The data breach has impacted not only the passengers traveling with the TAP airline but also government officials, including President de Sousa, Portuguese MPs, government officials, and members of the security forces.
The airline claims that despite the attack and the possible breach, there is no evidence that the threat actor has compromised its customers’ payment data and financial resources. The airline, though, warned its passengers about the data breach. It said that leaked data “could increase the risk of their illegal use, aimed at obtaining other data that could compromise the digital systems in fraudulent attempts such as phishing.
TAP’s CEO, Christine Ourmieres-Widener, replied to the breach and said that the airline is very serious about customer data. The airline has informed its customers about the breach and is advised to be extremely careful about unsolicited communications because hackers and fraudsters could use them to lure passengers into revealing sensitive information.