Iberia tells customers it was hit by a major security breach

1. Pro
2. Security

Iberia tells customers it was hit by a major security breach News By Sead Fadilpašić published 24 November 2025

It follows a hacker found trying to sell an Iberia data archive

Comments (0) ()

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.

(Image credit: Pixabay)

• Iberia disclosed a third‑party breach exposing customer names, emails, and loyalty card IDs, but not passwords or banking data
• A dark web ad claims 77 GB of Iberia’s internal technical files were stolen, raising questions of a separate attack
• Investigation is ongoing, law enforcement notified, and customers urged to stay alert for suspicious communications

Spain’s national airline Iberia is notifying customers of a third-party cyberattack and data theft incident.

In a data breach notification letter shared on social media, Iberia said a malicious threat actor gained access to a third-party supplier, through which it managed to steal full names, email addresses, and the Iberia Club loyalty card identification numbers of an undisclosed number of customers.

• Amazon Black Friday deals are live: here are our picks!

Passwords, as well as banking information, are apparently not compromised.

You may like

• Sunweb confirms data breach, warns customers to be on their guard
• Millions of passengers possibly affected by cyber breach at Dublin Airport supplier
• Qantas admits 5 million customers have data leaked following ransomware attack - here's what you need to know

Files pop up on the dark web

“As soon as we became aware of the incident, we activated our security protocol and procedures and adopted all the necessary technical and organizational measures to contain, mitigate and eliminate its effects and to prevent it in the future,” Iberia said, stressing any change of the email address on the Iberia website now requires a confirmation first.

The investigation remains ongoing, and law enforcement has been notified.

The airline says there is no evidence that the stolen files were abused in the wild, but still urges its customers to remain alert, especially to possible communication attempts.

At the same time, BleepingComputer reports someone recently posted a new ad on a dark web forum advertising 77 GB of Iberia data for $150,000.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Contact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsorsBy submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

In the forum post, the threat actor claimed the archive was nabbed “directly from the airline’s internal servers” and said it contained technical data on A320/A321 aircraft, AMP maintenance files, engine information, and other internal documents.

This does not align with what Iberia said in its email, so it remains to be seen if this is the same incident, or two separate attacks.

At press time, there was no new information posted on Iberia’s website, or its social channels.

You may like

• Sunweb confirms data breach, warns customers to be on their guard
• Millions of passengers possibly affected by cyber breach at Dublin Airport supplier
• Qantas admits 5 million customers have data leaked following ransomware attack - here's what you need to know

Iberia is part of the International Airlines Group and flies to over 130 destinations around the world.

Via BleepingComputer

The best antivirus for all budgetsOur top picks, based on real-world testing and comparisons

➡️ Read our full guide to the best antivirus1. Best overall:Bitdefender Total Security2. Best for families:Norton 360 with LifeLock3. Best for mobile:McAfee Mobile Security

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

Sead FadilpašićSocial Links Navigation

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Logout Read more Sunweb confirms data breach, warns customers to be on their guard    Millions of passengers possibly affected by cyber breach at Dublin Airport supplier    Qantas admits 5 million customers have data leaked following ransomware attack - here's what you need to know    Nearly 180k records exposed in billing platform breach - here’s what we know    Sensitive customer info exposed in Mango data breach - here's what we know    Hackers claim to have hit third-part provider for Boeing, Samsung and more    Latest in Security Perplexity responds to Comet browser vulnerability claims, argues "fake news"    D-Link routers under threat from dangerous flaw - here's how to stay safe    Second-order prompt injection can turn AI into a malicious insider    Too good to be true? Be careful when looking through those Black Friday offers - they might be a scam    AI agents are fuelling an identity and security crisis for organizations    US FCC repeals cybersecurity rules aimed at preventing Salt Typhoon-esque attacks    Latest in News How to watch Bigg Boss 19 online for *FREE*    Valve dashes dreams of $500 Steam Machine with new hint on pricing    Iberia tells customers it was hit by a major security breach    Many companies want to do more on sustainability - but just don't have the support or budget to do so    Loads more Android phones could soon work with AirDrop    NATO signs major Google deal to ensure secure sovereign cloud    LATEST ARTICLES

1. 1Iberia tells customers it was hit by a major security breach
2. 2iPadOS 26's window management is confusing – here's an easy trick to use it properly
3. 3Hostinger just got even cheaper - get 88% off with this Black Friday deal, exclusive to TechRadar
4. 4Valve engineer confirms the Steam Machine won't be subsidized – here's why I'm fearing the worst for the price
5. 5OVH boss predicts major cloud price rises are coming - so get ready