Air France and Klm Breach tied to hacker group

Air France and KLM warn customers about a new data violation that reached their customer service platform. Computer pirates accessed personal data, including names, emails, telephone numbers, information on the loyalty program and recent transactions. While there were no financial details, experts warn that this information remains a gold mine for cybercriminals.

The airlines say they acted quickly to cut the access of the attackers. They also emphasized that their internal networks remain safe.

“Air France and KLM detected unusual activity on an external platform that we used for customer service,” the companies said in a joint statement. “This activity led to unauthorized access to customer data. Our IT safety equipment, together with the relevant external part, took immediate measures to stop it. We have also established measures to prevent it from happening again. Air France and KLM internal systems were not affected.”

The authorities in France and the Netherlands have been notified. Meanwhile, clients are told impacted to remain alert.

“Customers whose data can be accessed are currently being informed,” added the airlines. “We advise you to be more attentive to emails or suspicious telephone calls.”

The notorious hacker group establishes a view to the airline industry in a security alarm

Register for my free Cyberguy report
Get my best technological tips, urgent security alerts and exclusive offers delivered directly to your inbox. In addition, you will get instant access to my definitive scam survival guide, free when it joins me Cyberguy.com/newsletter

A largest cyber crime trend

This attack is part of a broader wave of data theft linked to the Shinyhunters group. In recent months, they have been aimed at Salesforce customer service systems used by the main global brands. High profile victims include Adidas, Qantas, Louis Vuitton and even Google.

Ricardo Amper, CEO of Incode Technologies, world leader in identity verification and fraud prevention, calls this a dangerous change.

“This points to computer pirates such as Bruyos who evolve from brute force tricks to social engineering amplified by AI, attacking third party platforms where humans are the weak link. They are not only stealing data; they are using generative to create convincing impersonations. It is a rough career of AI.”

What is artificial intelligence (AI)?

How the hackers achieved this

The attackers now use advanced tools of AI that make the supplantation rapid and economical. These tools allow them to convince real people convincingly.

“Today’s attackers are digital scammers with an unprecedented tools kit,” says Amper. “With AI, they can impersonate real people who use cloned voices, voice patterns and even real realistic videos. With only 10-20 seconds of someone’s voice, they can create an audio clone that sounds exactly like them.

These impersonations promoted by AI avoid the “Red flags” that once alerted employees.

“The best deep ones are almost impossible to detect for humans in real time,” says Amper. “Pauses, uncomfortable phrases, audio bad, those gifts are disappearing.”

Why are customer service platforms

Customer service portals have a lot of personal information and, often, have the power to restore accounts or annul the security configuration. This combination makes them especially attractive to computer pirates.

“Customer service platforms are considered a treasure because they store detailed personal data, transactions records and sometimes have capacities to restore passwords or cancel security configuration,” says Amper. “Unlike central financial systems, many lack solid security controls, which makes them accessible to user -armed attackers.”

What this means for you

The violation of Air France-KLM shows how fast the cybercriminals are being adapted. With the supplant of AI, experienced customer service representatives can even be fooled. Your best defense is to stay attentive, use a stronger authentication and actively monitor your accounts for any unusual activity.

What computer pirates do with stolen data

Once computer pirates get access to these data, they can quickly convert them into profits.

“This begins when the attackers use stolen data, such as loyalty program, recent transactions or service application information to impersonate customers in future interactions,” says Amper. “Frequent loyalty points and miles act as digital currency that can monetize or exchange for rewards. These information pieces are treated as puzzle pieces to build complete identity profiles.”

These profiles often appear on sale on the dark website. Criminals can also reuse them to break into other accounts or launch highly specific scams.

How to protect after rape

Amper warns that scammers often move quickly after rape, sending false alerts that seem legitimate.

“After the rape, you are attentive to the phishing lures adapted to you, as emails that cite your recent Air France flight, urging a ‘security update’ with a doubtful link. The scammers thrive with the urgency.”

If you were notified, or even suspect that your data were part of this violation, take these steps immediately:

1) Enable Phishing resistant MFA

Wear Application -based authenticationsafety keys or biometry whenever possible. Unlike the basic text message codes, these methods are much more difficult for cybercriminals to intercepted, even if they already have part of their personal violation information.

2) Observe custom phishing attempts and use strong antivirus software

Scammers can refer to real flights, balances of the loyalty program or recent transactions to deceive it to click malicious links. Combine your caution with strong antivirus tools that can block dangerous websites, phishing and malware attempts before they have the opportunity to run. The best way to safeguard the malicious links that install malware, which potentially access their private information, is to have strong antivirus software installed on all its devices. This protection can also alert it to the PHISHING Electronic Correos and Ransomware scams, maintaining their personal information and their safe digital assets.

Get my elections for the best 2025 antivirus protection winners for their Windows, Mac, Android and iOS devices in Cyberguy.com/Lockupyoutech

3) Loyalty and financial accounts closely monitor loyalty

Frequent flying miles and loyalty points are like digital currency. They can be stolen, sold or redeemed by real world articles. Check your airline, hotel and bank accounts regularly for unusual activities.

Get the News business on the fly by clicking here

4) Use strong and unique passwords

Never reuse the same password in the accounts. If computer pirates compromise an account, they can test the same password in another part of an “credential filling” attack. A good reputation password administrator can create and store unique and complex session late.

See the best password administrators reviewed by 2025 experts in Cyberguy.com/Passwords

5) Register for an identity theft protection service

Credit offices and specialized services can alert it if your information appears on the dark website or is linked to suspicious activities. Identity theft companies can monitor personal information such as their Social Security number (SSN), telephone number and email address and alert it if it is sold on the dark website or used to open an account. They can also help you freeze your bank and credit card accounts to avoid greater unauthorized use by criminals.

See my advice and the best selections on how to protect yourself from identity theft in Cyberguy.com/ididentitytheft

6) Use a personal data elimination service

Personal data disposal services can help scrub your personal information from Data Broker sites. Eliminating these records makes it more difficult for attackers to gather the details they need to impersonate you. While no service can guarantee the complete elimination of your Internet data, a data removal service is really an intelligent option. They are not cheap and it is not your privacy. These services do all the work by you by actively monitoring and systematically erasing your personal information from hundreds of websites. It is what gives me peace of mind and has proven to be the most effective way to erase your personal internet data. By limiting the available information, it reduces the risk of cross -references data of infractions with information they can find in the dark network, which makes it difficult to be pointed out.

7) Scan your weekly credit reports

Check your important credit offices reports to obtain suspicious accounts or consultations that did not start.

Click here to get the News application

Kurt’s Key Takeways

Your frequent traveler miles, email address and telephone number may not seem as valuable as your credit card, but in the wrong hands, they are key to unlock more of your personal life. Protect them as effective.

What would you do if a scammer could call your airline and sound exactly like you? Get us knowing in Cyberguy.com/contact

Register for my free Cyberguy report
Get my best technological tips, urgent security alerts and exclusive offers delivered directly to your inbox. In addition, you will get instant access to my definitive scam survival guide, free when it joins me Cyberguy.com/n Ewsletter

Copyright 2025 Cyberguy.com. All rights reserved.