Hackers on several underground forums claim to have leaked more than 23 million records containing personal data of Vietnam Airlines customers.
The same group is reportedly selling information from other major companies, including Qantas and GAP Inc., suggesting a broader data theft campaign.
According to the posts, the attackers allegedly gained access to Salesforce accounts belonging to 39 companies, among them Vietnam Airlines.
The exposed data appears to include names, dates of birth, phone numbers, email addresses, and residential addresses of customers. The records span a period from November 23, 2020, up to June 20, 2025, indicating that the breach may have persisted for several years.
More insights from the team
Continue exploring adjacent research and threat briefings selected for their relevance to this topic.
U.S. Congressional Budget Office faces suspected cyberattack
The U.S. Congressional Budget Office is in hot water after a suspected foreign cyberattack breached its network. The CBO recently confirmed the incident, raising concerns about the potential exposu...
Researchers uncover vulnerabilities in ChatGPT that expose data
Hey there! If you’re a fan of ChatGPT, you might want to pay attention. Researchers just uncovered a bunch of vulnerabilities in OpenAI's latest models, GPT-4o and GPT-5. These issues could let att...
Gootloader malware resurfaces with new tactics after seven months
Gootloader malware is back in the game after a seven-month hiatus, and it’s got some new tricks up its sleeve. This sneaky malware loader is once again using SEO poisoning to push fake websites tha...