Air France Company Cyber Security Posture
http://www.airfrance.comDepuis 1933, la compagnie Air France porte haut les couleurs de la France à travers le monde entier. Avec une activité, répartie entre le transport aérien de passagers, le fret, la maintenance et l’entretien aéronautique, Air France est un acteur majeur du secteur aérien. Plus de 45 000 collaborateurs se mobilisent au quotidien pour proposer à chaque client, une expérience de voyage unique. Air France, KLM Royal Dutch Airlines et Transavia forment le Groupe Air France-KLM. Le Groupe s’appuie sur la force de ses hubs de Paris-Charles de Gaulle et d’Amsterdam-Schiphol pour offrir un vaste réseau international. Son programme de fidélité Flying Blue rassemble plus de 17 millions d’adhérents. Air France et KLM sont membres de l’alliance SkyTeam qui compte au total, 19 compagnies aériennes. Air France place la santé et la sécurité de ses clients et de ses personnels au cœur de ses préoccupations. Avec Air France Protect, son engagement sanitaire, la compagnie a instauré les mesures sanitaires les plus strictes pour un voyage en toute sécurité. Air France s’est fixé des objectifs ambitieux en matière de développement durable et travaille à réduire et compenser ses émissions de CO2. Dans le cadre du programme Horizon 2030, la compagnie s’est engagée à réduire de 50% ses émissions de CO2 par passager-kilomètre d’ici à 2030 à travers des investissements importants en faveur du renouvellement de sa flotte par des avions de nouvelle génération, l’utilisation de solutions innovantes pour réduire sa consommation de carburant ou encore l’utilisation progressive de carburants alternatifs durables. Plus d'informations sur : corporate.airfrance.com
Air France Company Details
air-france
29688 employees
698887.0
481
Airlines and Aviation
http://www.airfrance.com
Scan still pending
AIR_2584401
In-progress
Air France Risk Score (AI oriented)Between 900 and 1000
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
Air France Global Score.png)
Air France Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 900 and 1000 |
Air France Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| Air France-KLM | Breach | 85 | 4 | 8/2025 | AIR345080725 | Link | |
Rankiteo Explanation : Attack with significant impact with customers data leaksDescription: Air France and KLM announced a breach in a customer service platform where attackers gained unauthorized access to customer data. The airlines confirmed that financial and personal information was not compromised, but customer data was stolen. The breach was contained, and measures were implemented to prevent recurrence. Authorities were notified, and affected customers were advised to be vigilant against phishing attempts. The incident is under investigation, with no further details disclosed. | |||||||
| Air France | Breach | 85 | 4 | 8/2025 | AIR414080825 | Link | |
Rankiteo Explanation : Attack with significant impact with customers data leaksDescription: Unidentified hackers accessed Air France through a third-party service provider, stealing sensitive customer data. The compromised information includes full names, contact details, Flying Blue numbers, tier levels, and subject lines of service request emails. However, passport numbers, payment card details, passwords, and Flying Blue Miles balances were not affected. The attack was detected and mitigated by the IT security team, but the exact number of affected individuals remains unknown. No group has claimed responsibility, though the FBI has warned about increased targeting of airlines by the Scattered Spider hacking group. | |||||||
Air France Company Subsidiaries
Depuis 1933, la compagnie Air France porte haut les couleurs de la France à travers le monde entier. Avec une activité, répartie entre le transport aérien de passagers, le fret, la maintenance et l’entretien aéronautique, Air France est un acteur majeur du secteur aérien. Plus de 45 000 collaborateurs se mobilisent au quotidien pour proposer à chaque client, une expérience de voyage unique. Air France, KLM Royal Dutch Airlines et Transavia forment le Groupe Air France-KLM. Le Groupe s’appuie sur la force de ses hubs de Paris-Charles de Gaulle et d’Amsterdam-Schiphol pour offrir un vaste réseau international. Son programme de fidélité Flying Blue rassemble plus de 17 millions d’adhérents. Air France et KLM sont membres de l’alliance SkyTeam qui compte au total, 19 compagnies aériennes. Air France place la santé et la sécurité de ses clients et de ses personnels au cœur de ses préoccupations. Avec Air France Protect, son engagement sanitaire, la compagnie a instauré les mesures sanitaires les plus strictes pour un voyage en toute sécurité. Air France s’est fixé des objectifs ambitieux en matière de développement durable et travaille à réduire et compenser ses émissions de CO2. Dans le cadre du programme Horizon 2030, la compagnie s’est engagée à réduire de 50% ses émissions de CO2 par passager-kilomètre d’ici à 2030 à travers des investissements importants en faveur du renouvellement de sa flotte par des avions de nouvelle génération, l’utilisation de solutions innovantes pour réduire sa consommation de carburant ou encore l’utilisation progressive de carburants alternatifs durables. Plus d'informations sur : corporate.airfrance.com
Access Data Using Our API
Get company history
Rapid.png)
Air France Cyber Security News
5 Airlines Hacked In 2 Months: Air France And KLM Are Latest Victims
Cyberhacker groups have successfully targeted major global airlines since mid-June.
Air France, KLM Say Hackers Accessed Customer Data
Airlines Air France and KLM have disclosed a data breach stemming from unauthorized access to a third-party platform.
Air France and KLM disclose data breaches impacting customers
Air France and KLM announced on Wednesday that attackers had breached a customer service platform and stolen the data of an undisclosed ...
Airlines KLM and Air France Detail Customer Data Breach
Airlines Air France and KLM said they suffered a data breach involving a third-party service storing customer data.
AirFrance-KLM reports data breach at customer service
According to the airline, “no sensitive data such as passwords, travel details, Flying Blue miles, passport or credit card details were stolen.” ...
Air France and KLM confirm customer data stolen in third-party breach
Hackers have gained access to the personal data of potentially hundreds of KLM and Air France customers following a supply chain attack.
Air France KLM Data Breach Exposes Customer Details via Third-Party Hack
Air France and KLM confirmed a data breach via a hacked third-party platform, exposing customer names, contact details, and loyalty numbers, but ...
Air France, KLM Alert Authorities of Data Breach
NEWS BRIEF · Air France and KLM announced yesterday that threat actors were able to breach a customer service platform and steal personal data.
KLM and Air France Join Aeroflot, Qantas, WestJet, United in Facing Serious Cybersecurity Threats, Data Breach and Outages
KLM and Air France join Aeroflot, Qantas, WestJet, United, and South African Airways in facing serious cybersecurity threats, ...
Air France Similar Companies
SpiceJet Limited
Through LinkedIn, we endeavor to connect with our flyers, exchange ideas, and announce new routes, products, and services, advertise for open positions, and continually evolve our services to better match customer needs. We encourage constructive discussion and feedback, however please note that thi
avianca
!BIenvenido al sitio oficial! Avianca es la primera aerolínea comercial fundada en las Américas y la segunda en el mundo. Enfocados en alcanzar la excelencia y eficiencia operacional, se dio marcha a una profunda reorganización de los procesos, la cual ha estado acompañada de la modernización
JetBlue
When JetBlue first took flight in February 2000, our founding goal was to bring humanity back to air travel, and over two decades later, we still put our customers, crewmembers and communities at the center of everything we do. Before we even had aircraft to fly, our founders selected five values
Phoenix Sky Harbor International Airport
The City of Phoenix owns and operates Phoenix Sky Harbor International Airport (PHX). Located in the heart of the southwestern United States, Phoenix Sky Harbor offers more than 120 nonstop flights each day to domestic and international destinations with connecting service to anywhere in the world.
Singapore Airlines
Welcome aboard Singapore Airlines on LinkedIn. Discover travel inspirations, business travel tips, cultural insights, our latest updates, and more. Singapore Airlines is a global company dedicated to providing air transportation services of the highest quality and to maximising returns for the ben
Etihad
Marhaba! Welcome to Etihad Airways. We are proud to be the national airline of the UAE, flying to Abu Dhabi or onwards to over 70 global destinations. Our passion is to help people reach unmissable places, where they’ll make unforgettable memories. Our aim is to provide our passengers with unbeata
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Air France CyberSecurity History Information
How many cyber incidents has Air France faced?
Total Incidents: According to Rankiteo, Air France has faced 2 incidents in the past.
What types of cybersecurity incidents have occurred at Air France?
Incident Types: The types of cybersecurity incidents that have occurred incidents Breach.
How does Air France detect and respond to cybersecurity incidents?
Detection and Response: The company detects and responds to cybersecurity incidents through incident response plan activated with True and third party assistance with True and containment measures with Corrective measures implemented and communication strategy with Data breach notification letters sent to affected customers and incident response plan activated with Yes and third party assistance with Yes and law enforcement notified with Yes and containment measures with Cut off attackers' access and remediation measures with Implemented measures to prevent recurrence and communication strategy with Notifying impacted individuals.
Incident Details
Can you provide details on each incident?
Incident : Data Breach
Title: Cyberattack on Air France and KLM through a third-party service provider
Description: Unidentified hackers accessed Air France and KLM through a third-party service provider, stealing customer data including names, contact details, and more. Passport data was not compromised.
Type: Data Breach
Attack Vector: Third-party service provider compromise
Threat Actor: Unidentified (possibly Scattered Spider)
Incident : Data Breach
Title: Air France and KLM Customer Data Breach
Description: Attackers breached a customer service platform and stole the data of an undisclosed number of customers. The airlines have cut off the attackers' access and notified relevant authorities.
Date Publicly Disclosed: 2024-08-07
Type: Data Breach
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Breach.
How does the company identify the attack vectors used in incidents?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Third-party service provider.
Impact of the Incidents
What was the impact of each incident?
Incident : Data Breach AIR414080825
Data Compromised: Full names, contact details, Flying Blue numbers and tier levels, subject lines of service request emails
Identity Theft Risk: Possible
Payment Information Risk: None
Incident : Data Breach AIR345080725
Data Compromised: Customer data
Systems Affected: External customer service platform
Brand Reputation Impact: Potential risk due to data theft
Identity Theft Risk: Customers advised to be vigilant for suspicious emails or phone calls
Payment Information Risk: Financial and personal information not affected
What types of data are most commonly compromised in incidents?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personal data and Customer data.
Which entities were affected by each incident?
Incident : Data Breach AIR345080725
Entity Type: Airline
Industry: Aviation
Location: France
Size: Large
Customers Affected: Undisclosed number
Incident : Data Breach AIR345080725
Entity Type: Airline
Industry: Aviation
Location: Netherlands
Size: Large
Customers Affected: Undisclosed number
Response to the Incidents
What measures were taken in response to each incident?
Incident : Data Breach AIR414080825
Incident Response Plan Activated: True
Third Party Assistance: True
Containment Measures: Corrective measures implemented
Communication Strategy: Data breach notification letters sent to affected customers
Incident : Data Breach AIR345080725
Incident Response Plan Activated: Yes
Third Party Assistance: Yes
Law Enforcement Notified: Yes
Containment Measures: Cut off attackers' access
Remediation Measures: Implemented measures to prevent recurrence
Communication Strategy: Notifying impacted individuals
What is the company's incident response plan?
Incident Response Plan: The company's incident response plan is described as Yes.
How does the company involve third-party assistance in incident response?
Third-Party Assistance: The company involves third-party assistance in incident response through Yes.
Data Breach Information
What type of data was compromised in each breach?
Incident : Data Breach AIR414080825
Type of Data Compromised: Personal data
Sensitivity of Data: Moderate
Data Exfiltration: True
Personally Identifiable Information: Full names, contact details
Incident : Data Breach AIR345080725
Type of Data Compromised: Customer data
Number of Records Exposed: Undisclosed
Sensitivity of Data: Non-financial, non-personal
Data Exfiltration: Yes
Personally Identifiable Information: No
What measures does the company take to prevent data exfiltration?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Implemented measures to prevent recurrence.
How does the company handle incidents involving personally identifiable information (PII)?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through were Corrective measures implemented and Cut off attackers' access.
Ransomware Information
Was ransomware involved in any of the incidents?
Incident : Data Breach AIR414080825
Data Exfiltration: True
Incident : Data Breach AIR345080725
Data Exfiltration: Yes
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident?
Incident : Data Breach AIR345080725
Regulatory Notifications: Dutch Data Protection Authority, CNIL
References
Where can I find more information about each incident?
Incident : Data Breach AIR414080825
Source: Tweakers
Incident : Data Breach AIR414080825
Source: Cybernews
Incident : Data Breach AIR345080725
Source: BleepingComputer
Where can stakeholders find additional resources on cybersecurity best practices?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Tweakers, and Source: Cybernews, and Source: BleepingComputer.
Investigation Status
What is the current status of the investigation for each incident?
Incident : Data Breach AIR345080725
Investigation Status: Ongoing
How does the company communicate the status of incident investigations to stakeholders?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through were Data breach notification letters sent to affected customers and Notifying impacted individuals.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident?
Incident : Data Breach AIR414080825
Customer Advisories: Data breach notification letters sent
Incident : Data Breach AIR345080725
Customer Advisories: Customers advised to be vigilant for suspicious emails or phone calls
What advisories does the company provide to stakeholders and customers following an incident?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: were Data breach notification letters sent and Customers advised to be vigilant for suspicious emails or phone calls.
Initial Access Broker
How did the initial access broker gain entry for each incident?
Incident : Data Breach AIR414080825
Entry Point: Third-party service provider
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident?
Incident : Data Breach AIR345080725
Root Causes: None
Corrective Actions: Implemented measures to prevent recurrence
What is the company's process for conducting post-incident analysis?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Yes.
What corrective actions has the company taken based on post-incident analysis?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Implemented measures to prevent recurrence.
Additional Questions
General Information
Who was the attacking group in the last incident?
Last Attacking Group: The attacking group in the last incident was an Unidentified (possibly Scattered Spider).
Incident Details
What was the most recent incident publicly disclosed?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2024-08-07.
Impact of the Incidents
What was the most significant data compromised in an incident?
Most Significant Data Compromised: The most significant data compromised in an incident were Full names, contact details, Flying Blue numbers and tier levels, subject lines of service request emails and Customer data.
What was the most significant system affected in an incident?
Most Significant System Affected: The most significant system affected in an incident was External customer service platform.
Response to the Incidents
What third-party assistance was involved in the most recent incident?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was Yes.
What containment measures were taken in the most recent incident?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident were Corrective measures implemented and Cut off attackers' access.
Data Breach Information
What was the most sensitive data compromised in a breach?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Full names, contact details, Flying Blue numbers and tier levels, subject lines of service request emails and Customer data.
What was the number of records exposed in the most significant breach?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 0.
References
What is the most recent source of information about an incident?
Most Recent Source: The most recent source of information about an incident are Tweakers, Cybernews and BleepingComputer.
Investigation Status
What is the current status of the most recent investigation?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
Stakeholder and Customer Advisories
What was the most recent customer advisory issued?
Most Recent Customer Advisory: The most recent customer advisory issued was were an Data breach notification letters sent and Customers advised to be vigilant for suspicious emails or phone calls.
Initial Access Broker
What was the most recent entry point used by an initial access broker?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an Third-party service provider.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
