Air France, target of hackers. During the night of August 6 to 7, Air France alerted its customers by e-mail of a personal data leak. At the origin of the incident: an external service provider responsible for customer relations, victim of unauthorized access to certain information related to the Flying Blue loyalty program. If banking data or passwords have not been compromised, the incident remains worrying.
In its message, the airline: “Our teams responsible for security operations have detected suspicious behavior from an unauthorized entity related to your account. We immediately implemented corrective measures to prevent any new exposure from your data. »»
Info of the stolen loyalty program
Exfiltrated information includes names, first names, email addresses, Flying Blue’s numbers and statutes, as well as exchanges with customer service. On the other hand, the group ensures that passwords, payment data, passports, reservations or accumulated miles have not been assigned.
The incident was notified to the CNIL and the Dutch authorities. No official communication has yet been published on social sites or networks. The concrete nature of the attack is not known.
This is not the first time that Air France has faced such an incident. Already in 2023, a data leak had been noted and customers had been called upon to change their passwords.
Risks of phishing on vacation
Even in the absence of banking data, stolen personal information can allow cybercriminals to carry out targeted phishing campaigns. Air France therefore invites its customers to show extreme caution, by not responding to any suspicious message, even if it seems to come from the company or mentions a recent flight.
The holiday period is particularly conducive to attempts at phishing. Cybercriminals can pretend to be tourism companies or take advantage of the absence of travelers to send false alerts. A study of the Check Point cybersecurity group reveals that more Of 39,000 new domain names linked to the holidays were recorded in May 2025, of which 1 in 21 was reported as malicious or suspect. Vigilance remains in order, as with each cyber attack.
