Airline Cyberattacks Surge: What the Latest Hacks Mean for Travellers

Air France and KLM Confirm Latest Breach in Growing Airline Cybersecurity Crisis

Hackers breached third-party systems used by Air France and KLM, exposing customer names, loyalty numbers, and tier levels without affecting core systems. Both airlines swiftly contained the breach, notified affected customers, and advised vigilance against phishing through suspicious calls, emails, or unexpected communication attempts.

This incident follows attacks on Qantas, Hawaiian Airlines, WestJet, and South African Airways, revealing a dangerous upward trend in targeted airline cybercrime.

ShinyHunters: The Hacking Collective Behind High-Profile Breaches

Cyber experts suspect ShinyHunters, linked to Scattered Spider, orchestrated Air France and KLM breaches by exploiting weaknesses in vulnerable third-party platforms. ShinyHunters previously targeted major companies including Google, Cisco, Adidas, and Allianz using sophisticated attacks on Salesforce-based customer support systems.

Affiliation with Scattered Spider shows hacking communities often share specialised talent, increasing operational impact and targeting potential across multiple high-value industries.

Why Airlines Have Become Prime Targets for Cybercriminals

Airlines operate complex global networks with massive supply chains, creating numerous exploitable weak points for hackers, according to leading cybersecurity experts. Most breaches originate within third-party providers, limiting airlines’ direct control over vulnerable systems and significantly increasing attack surfaces across operations.

The interconnected nature of booking systems, loyalty programs, and customer service platforms amplifies data exposure risks during successful cyberattacks.

Frequent Flyer Miles: A Hidden Goldmine for Hackers

Air France’s Flying Blue program allows redemption of miles for hotels, shopping, and goods, expanding valuable options beyond standard flights. Hackers prize miles because they quickly convert them into goods or services, making stolen rewards nearly impossible to trace afterward.

Weak security on loyalty accounts lets criminals drain balances efficiently without immediately triggering fraud alerts or other warning signals.

What This Means for Travellers and the Airline Industry

Travellers must remain alert for suspicious messages after breaches, where stolen data could fuel targeted phishing campaigns or identity theft. Airlines require stronger oversight of third-party providers to ensure security measures match the importance of loyalty and passenger information.

With assets like frequent flyer miles and passenger data threatened, cybersecurity has become a critical frontline concern for modern aviation.