Airdeals, Airtips, and Payair, three UK-based airline agency websites, have allegedly been compromised in a combined data breach and extortion attempt. The threat actor claims to have already taken the Airtips website offline and issued a ransom demand, threatening to publish all stolen data publicly if a payment is not made within 48 hours. Concurrently, the stolen database and files are being offered for sale on a cybercrime forum for $300.
According to the actor, the allegedly compromised data includes:
-
Website source code, configurations, and backups (2.97 GB)
-
Database containing 102,220 lines
-
Direct access to mailboxes and email messages
-
Full names of customers
-
Payment methods (e.g., Visa Debit, Bank Transfer, Cash)
-
Payment card numbers and related transaction data
Daily Dark WebRead More
R1
T1
