Ransomware gang using MOVEit vulnerability to steal data of Aer Lingus

Aer Lingus, has confirmed that approximately 5,000 employees, as well as a smaller number of former employees, have been impacted by a cyber attack that compromised personal information.

The attack exploited a vulnerability in MOVEit Transfer, a widely used file transfer software, prompting companies to take immediate action. UK's payroll provider Zellis reported that eight of its customers were affected, potentially exposing personal data such as names, addresses, and banking details.

Aer Lingus clarified that no financial, bank details or phone contact information were compromised, and the incident has been contained.

Their statement really means that the MOVEit instance was patched but the data was already accessed and very probably exfiltrated.

The company has informed its employees, provided support, and engaged with relevant authorities.