EasyJet Reveals Data Breach of up to 9 Million Customers

EasyJet has revealed that a recent cyber-attack has resulted in the personal information of 9 million of its customers being accessed. Additionally, 2,208 of the 9 million customers affected have had their credit card details stolen.

As a result of the attack, and on the recommendation of the Information Commissioners Office (“the ICO”), Easyjet has contacted all customers whose travel information was accessed and have advised them to be extra vigilant to any potential scams, particularly if they receive unsolicited communications.

Whilst EasyJet claim to have taken immediate steps to halt the attack as soon as it became aware it had been compromised, it could potentially face a fine of up to 4% of its annual worldwide turnover if it is found to have mishandled customer data. The incident mirrors the 2018 data breach of British Airways, who were fined £183 million by the ICO after the booking details of over 500,000 customers were exposed.

The message for customers is to stay vigilant and to be wary of suspicious emails. Tips on how to spot suspicious emails and how to avoid online fraud can be found at https://www.nidirect.gov.uk/articles/avoid-online-fraud.

If you have been affected by the data breach and are concerned as to how your personal details may be used, please contact Andrew Morrow on andrew.morrow@mtb-law.co.uk.