ragnarlocker attacks TAP Air Portugal

Incident Date:

September 2, 2022

World map

Overview

Title

ragnarlocker attacks TAP Air Portugal

Victim

TAP Air Portugal

Attacker

Ragnarlocker

Location

Humberto Delgado, Portugal

Lisboa, Portugal

First Reported

September 2, 2022

TAP Air Portugal Suffers Ransomware Attack by Ragnarlocker Group

Company Overview

TAP Air Portugal is a significant player in the aviation industry, offering flights to various destinations worldwide. The company has been in operation for many years and has a strong presence in the market.

Industry Standout

TAP Air Portugal is known for its commitment to customer service and has implemented various measures to enhance the travel experience for its passengers. The airline has a loyalty program, TAP Miles&Go, which offers exclusive offers and benefits to its members.

Vulnerabilities

Despite the company's efforts to secure its systems, it was still vulnerable to a ransomware attack. The Ragnarlocker group was able to exfiltrate customer data, including personal information such as names, addresses, email addresses, phone numbers, and frequent flier numbers. This data breach could potentially lead to increased risks of phishing attacks and other fraudulent activities.

Response and Mitigation

TAP Air Portugal has taken steps to contain the attack and protect its customers' data. The company has deployed industry-leading experts for investigation and forensics, isolated affected systems, and strengthened security measures in specific areas as a precaution. It is also recommending that customers change their passwords and stay cautious of unsolicited communications asking for personal information.

The ransomware attack on TAP Air Portugal highlights the importance of robust cybersecurity measures in the transportation sector. Companies must remain vigilant against potential threats and take proactive steps to protect their customers' data.

Sources

  • FlyTAP – TAP's official website: https://www.flytap.com/
  • TAP Air Portugal confirms hack, as Ragnar Locker gang leaks data
  • Ransomware Gang Claims Customer Data Stolen in TAP Air Portugal Hack
  • Important notice on customer information | TAP Air Portugal

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.