Madrid – Spanish airline Iberia confirmed Saturday a data breach affecting an unspecified number of customers, stemming from unauthorized access to a service provider’s systems. While customer data was compromised, Iberia reports no evidence yet of fraudulent activity.
The airline stated the exposed details included names, loyalty programme membership details, and contact information, but crucially excluded passwords and bank card numbers. Iberia alerted customers via a message reported by AFP, explaining that security protocols were immediately activated upon discovery of the incident.
“Iberia has detected a security incident involving unauthorised access to the systems of one of our service providers, which has compromised the confidentiality of certain data,” the airline said. “As soon as we became aware, we immediately activated our security protocols and procedures, adopting all necessary technical and organisational measures to contain it, mitigate its effects, and prevent it from happening again in the future.”
This incident adds to a growing trend of cyberattacks targeting the travel industry. In August, Air France-KLM reported unauthorized access to customer data. Last month, Australian airline qantas revealed a major breach impacting 5.7 million customers through a cyberattack on software firm Salesforce – an attack that also affected Disney, google, IKEA, Toyota, and McDonald’s.
