TAP assures its customers that it stopped data theft in a recent cyberattack, but the Ragnar Locker ransomware group says it made off with user info.

Dark Reading Staff, Dark Reading

September 2, 2022

1 Min Read
Airplane landing at sunset
Source: Markus Mainka via Alamy Stock Photo

Despite TAP Air Portugal's claims that a recent cyberattack was stopped and no airline customer data was compromised, the Ragnar Locker ransomware gang posted on its leak site that it's got the goods.

On Aug. 26, TAP announced it was targeted in an unsuccessful cyberattack.

"No facts have been found to conclude that there has been improper access to customer data," TAP tweeted. "The website and app still have some instability."

Yet, according to reports, Ragnar Locker responded on Aug. 31 claiming that it had indeed breached TAP's systems and stolen customer data, and included a screenshot of what it said was a sample of the exfiltrated records, loaded with personal identifiable information (PII).

TAP Air Portugal is sticking to the company's original position, releasing a new statement on Sept. 1 reiterating the company blocked the cyberattack, adding, however, that the airline's app, website, and miles program are still "registering some instability."

About the Author(s)

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights