Cyber Incident Victim: Transavia

On February 24, 2020, Dutch low-cost airline Transavia publicly disclosed a data breach involving unauthorized access to an email inbox containing passenger information. The incident potentially impacted approximately 80,000 travelers whose personal and flight-related data became exposed. According to the airline's statement, the breach occurred when threat actors compromised a specific email account that stored passenger communications and records. The compromised data included passengers' full names, dates of birth, flight itinerary details, booking reference numbers, and information regarding additional purchased services such as extra luggage allowances. No financial data or payment card information was mentioned as part of the exposed dataset, though the breach did reveal whether passengers had requested special accommodations like wheelchair assistance during their travels.

Transavia confirmed the breach through its official announcement but did not specify the exact timeframe during which the email account remained compromised or the method used by attackers to gain access. The airline acknowledged the exposure of sensitive personal information that could potentially facilitate targeted phishing attempts or identity theft against affected passengers. While the notification did not detail specific containment measures, the public disclosure represented the initial phase of incident response aimed at informing customers about potential risks to their personal data. The breach highlighted vulnerabilities associated with storing passenger information in email-based systems without adequate access controls. No information was provided regarding regulatory notifications, forensic investigations, or whether authorities had been engaged to address the security incident. The exposure of special assistance requests raised particular concerns about the privacy implications for travelers with accessibility requirements.