Home > Security > Security News

Possible EgyptAir Cyberattack: 104,000 Records and Sensitive Documents Allegedly For Sale

Published
Written by:
Lore Apostol
Lore Apostol
Cybersecurity Writer
Airlines Data Breach
Summarize with:
ChatGPT logo ChatGPT Claude.ai logo Claude.ai Google AI logo Google AI Grok logo Grok Perplexity logo Perplexity
Google logo Add as preferred source on Google
Key Takeaways
  • Database Sale: Threat actor "quellostanco" claims to be selling a database of approximately 104,000 records allegedly stolen from EgyptAir on a cybercrime forum.
  • Compromised Data: The reported dataset includes HR and recruitment records, cleartext passwords for user and admin accounts, national ID numbers, and staff email documents.
  • Hacker Claims: The post also advertises the sale of sensitive documents.

A significant EgyptAir cyberattack has allegedly targeted the national flag carrier of Egypt, with a threat actor advertising stolen data on the dark web. The individual, operating under the pseudonym "quellostanco," posted on a cybercrime forum, claiming to possess a full database extracted from the airline's systems. 

While the breach is currently pending verification, the detailed nature of the advertised dataset suggests a potentially severe compromise of internal networks.

EgyptAir Data Breach

The scope of this reported EgyptAir data breach appears extensive. According to the forum post, the compromised dataset contains approximately 104,000 records derived primarily from HR and recruitment systems. 

EgyptAir breach claim | Source: HackManac on X
EgyptAir breach claim | Source: HackManac on X

The exposed information allegedly includes:

Implications for Aviation Cybersecurity

If valid, the exposure of cleartext passwords indicates a failure in basic credential management protocols. This incident underscores the growing vulnerability of aviation cybersecurity infrastructure, as the airline industry relies heavily on interconnected digital systems for recruitment and operations. 

In October 2025, the Cl0p Ransomware group claimed an American Airlines breach, and Scattered Spider targeted the Vietnam Airlines CRM to steal government records. 

A report last month highlighted that dozens of global companies were breached through infostealer credentials, including those inaviation, defense, and engineering. 

Add a Comment
Related
Cyber Job Moves: Global Security Leaders Shift Roles Across Tech, Government, and Healthcare
UNC3886 Cyber Espionage Group Linked to Singapore Telecom Infrastructure Cyberattacks: Singtel, StarHub, M1, Simba Telecom
Exploiting the Single Edge of the Sword That Is AI 
Flickr
Flickr Discloses Potential Data Exposure Following Third-Party Email Provider Vulnerability
764 - CSAM - Messages - Chat - Hackers - Emojis
Federal Charges Filed in 764-Linked CSAM Case Involving a 2-Year-Old Child
Hacker - Phishing - Skull - Data
Apple Pay Users Targeted by Sophisticated Phishing Scam Leveraging Voice and Email
Most Popular
Cyber Job Moves: Global Security Leaders Shift Roles Across Tech, Government, and Healthcare
UNC3886 Cyber Espionage Group Linked to Singapore Telecom Infrastructure Cyberattacks: Singtel, StarHub, M1, Simba Telecom
Exploiting the Single Edge of the Sword That Is AI 
Flickr
Flickr Discloses Potential Data Exposure Following Third-Party Email Provider Vulnerability
764 - CSAM - Messages - Chat - Hackers - Emojis
Federal Charges Filed in 764-Linked CSAM Case Involving a 2-Year-Old Child
Hacker - Phishing - Skull - Data
Apple Pay Users Targeted by Sophisticated Phishing Scam Leveraging Voice and Email
Cyber Job Moves: Global Security Leaders Shift Roles Across Tech, Government, and Healthcare
UNC3886 Cyber Espionage Group Linked to Singapore Telecom Infrastructure Cyberattacks: Singtel, StarHub, M1, Simba Telecom
Exploiting the Single Edge of the Sword That Is AI 
Flickr Discloses Potential Data Exposure Following Third-Party Email Provider Vulnerability
Federal Charges Filed in 764-Linked CSAM Case Involving a 2-Year-Old Child
Apple Pay Users Targeted by Sophisticated Phishing Scam Leveraging Voice and Email

Most Popular
Cyber Job Moves: Global Security Leaders Shift Roles Across Tech, Government, and Healthcare
UNC3886 Cyber Espionage Group Linked to Singapore Telecom Infrastructure Cyberattacks: Singtel, StarHub, M1, Simba Telecom
Exploiting the Single Edge of the Sword That Is AI 
Flickr
Flickr Discloses Potential Data Exposure Following Third-Party Email Provider Vulnerability
764 - CSAM - Messages - Chat - Hackers - Emojis
Federal Charges Filed in 764-Linked CSAM Case Involving a 2-Year-Old Child
Hacker - Phishing - Skull - Data
Apple Pay Users Targeted by Sophisticated Phishing Scam Leveraging Voice and Email
Cyber Job Moves: Global Security Leaders Shift Roles Across Tech, Government, and Healthcare
UNC3886 Cyber Espionage Group Linked to Singapore Telecom Infrastructure Cyberattacks: Singtel, StarHub, M1, Simba Telecom
Exploiting the Single Edge of the Sword That Is AI 
Flickr Discloses Potential Data Exposure Following Third-Party Email Provider Vulnerability
Federal Charges Filed in 764-Linked CSAM Case Involving a 2-Year-Old Child
Apple Pay Users Targeted by Sophisticated Phishing Scam Leveraging Voice and Email

TechNadu keeps you informed with the latest in cybersecurity, VPNs, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2026 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: