"Ransomware Gang Claims Customer Data Stolen in TAP Air Portugal Hack"

The Ragnar Locker ransomware gang recently stated that it has exfiltrated customer data in a cyberattack on Portuguese state-owned flag carrier airline TAP Air Portugal.  The incident was initially disclosed on August 26, when TAP announced on Twitter that it managed to foil the cyberattack before the threat actor could access any customer data.  On August 31, however, the Ragnar Locker ransomware gang boasted on their leaks website that the airline’s systems were, in fact, breached and that customer data was exfiltrated.  The threat actor also attempted to shame TAP, claiming that the data breach could result in the largest lawsuit in history, inferring that the personal information of at least hundreds of thousands of TAP customers was impacted in the incident.  Ragnar Locker also posted a screenshot allegedly proving that data was indeed stolen during the cyberattack.  The screenshot includes names, addresses, email addresses, phone numbers, corporate IDs, travel information, nationality, gender, and other personal information.

SecurityWeek reports: "Ransomware Gang Claims Customer Data Stolen in TAP Air Portugal Hack"