×

Irish Information Security Forum

MOVEit Exploit affects DAA

Source: SimpleFlying: Aviation News

 

Pay And Benefits Information Of 2,000 DAA Staff Compromised

 

Almost 2,000 employees' pay and benefits information at Dublin airport's operator, DAA, was compromised in a recent cyber attack on Aon, a professional service provider. DAA has confirmed that some employees' pay and benefits data were compromised. DAA was among the numerous global companies affected by the attack on the file-transfer software tool MOVEit, which is used by Aon. 

 

DAA can confirm that as a result of a recent cyber-attack on Aon, a third-party professional service provider, data relating to some employees’ pay and benefits was compromised, DAA takes the security of sensitive personal information extremely seriously and has notified the Data Protection Commission of the third-party breach.

the operator said in a statement.

 

The AON data-breach / cyberattack targeted various entities, including US government agencies, the UK's telecom regulator, and energy giant Shell. These organizations fell victim to a security vulnerability in Progress Software's MOVEit product, which was used by AON although the vulnerability was identified in May 2023

 

Reacting to the news on Twitter, Independent Senator Gerard Craughwell said “It really is time we all upped our game in all things cyber security,” adding: “The HSE has been hit twice, Aer Lingus, MTU – what more do we need to know?”

 

Other aviation companies have fallen victim to the same MOVEit vulnerability. In June 2023, Aer Lingus, was hit and British Airways, its sister airline within the International Airlines Group (IAG) was also hit. The Aer Lingus databreach compromised personal information belonging to approximately 5,000 current and former employees. The airline disclosed that the hackers targeted their payroll company, Zellis, who was using MOVEit.

 

Other recent MOVEit data breaches hitting Irish companies
> HSE-systems-breached-again

> MOVEit-Transfer-global-data-breach-affects-Ireland 

 

 

 

IISF Logo

If you are interested in finding out more about the IISF, or would like to attend one of our Chapter Meetings as an invited guest, please contact the
IISF Secretary:

By email:
secretary@iisf.ie

By post:

David Cahill

Information Security

GPO, 1-117
D01 F5P2

Enhance your Cybersecurity knowledge and learn from those at the coalface of information Security in Ireland

 


Forum SPONSORS 

Invitations for Annual Sponsorship of IISF has now reopened.

Sponsorship of IISF Opportunity
(your logo & profile link here)

 

Sponsors are featured prominently throughout the IISF.IE website, social media channels as well as enjoying other benefits Read more

 

secured by edgescan digital security radar logo

© iiSf. All rights reserved. CRN: 3400036GH  - Privacy  - Sponsorship  - Cybersecurity News Index  - Cybersecurity Resources  - X  - Produced by
LinkedIn Twitter