A threat actor claims to have sold a 300GB database belonging to Uzbekistan Airlines, containing sensitive passenger and employee data. The breach includes passport scans, financial details, corporate credentials, and internal communications, highlighting significant data exposure. #UzbekistanAirlines #DataBreach
Keypoints
- The threat actor claims to have compromised Uzbekistan Airlines’ data from S3 buckets and a Postgres database.
- The leaked data includes approximately 500,000 passenger emails and 400 employee emails.
- Sensitive documents such as passports, marriage certificates, and driving licenses are part of the breach.
- The database contains detailed passenger information and full ticketing data, including some credit card details.
- Critical system credentials for applications like Amadeus and multiple communication channels were also exposed.