The hacker group Ragnar Locker has published the data of 1.5 million TAP clients. 581 gigabytes of personal information have been online since Monday. In a post on the dark web, the hacker group said that they still have remote access to the systems of TAP.
The published personal data includes addresses, phone numbers, client names, and the identification documents of professionals and TAP partners.
Expresso has said that TAP did not negotiate a ransom payment to stop the publication of client data.
In a post on the dark web, Ragnar Locker said, “the most interesting thing is that they have not resolved the vulnerabilities on their network, and these kinds of incidents can happen again. If anyone needs remote access to TAP Air, let us know.”
TAP contacted the affected clients on Tuesday, saying that the publishing of their data can “increase the risk” of “illegitimate use” of their data.
TAP has also said that “the adopted measures allow us to guarantee the integrity of the data and the operation of all systems safely.”
In early September, TAP confirmed it had been a cyberattack victim but that the situation was under control.
However, at the time, Ragnar Locker said in a post, “A few days ago, TAP Air Portugal made a press announcement confidently affirming that it has successfully solved a cyberattack and that data was not compromised (but we have reasons to believe that hundreds of gigabytes could be compromised).”
TAP Air Portugal is the state-owned airline of Portugal and the largest in the country, accounting for more than 50% of arrivals and departures at the Lisbon Airport.