Sunweb Group acknowledges that a data breach has occurred. Cybercriminals used the leaked data to send phishing emails to customers.
A hack on a Sunweb Group system led to unauthorized access to customer data. This involved data such as names, email addresses, phone numbers, and booking information. Cybercriminals used the stolen information to send phishing emails to customers with upcoming vacations. The company now reports that additional security measures have been implemented and affected customers have been notified.
Hacked Email Server
Since September 30, some Sunweb customers received phishing emails asking them to confirm personal details and make a payment. The emails threatened that the vacation would otherwise be cancelled. The emails came from a hacked email server of a company outside the Netherlands, but contained real customer data from a Sunweb Group system.
read also
Delays and Canceled Flights Continue at Brussels Airport after Cyberattack
Internal investigation reveals that cybercriminals gained access to a system of the travel company. This resulted in the theft of names, email addresses, phone numbers, and booking details such as destinations and travel dates. More sensitive information such as payment details, passwords, or copies of identity documents was not leaked according to the company.
Measures
Sunweb has since shut down the affected system and implemented additional security measures. All customers with active bookings have been notified. Affected customers can expect additional communication. The breach has also been reported to the Dutch Data Protection Authority.