Amadeus
Company Details
Linkedin ID:
amadeus
Website:
Employees number:
22,756
Number of followers:
493,793
NAICS:
5415
Industry Type:
Homepage:
amadeus.com
IP Addresses:
540
Company ID:
AMA_3012346
Scan Status:
Completed
Amadeus Company CyberSecurity Posture
amadeus.com
We make the experience of travel better for everyone, everywhere by inspiring innovation, partnerships and responsibility to people, places and planet. Our technology powers the travel and tourism industry. We inspire more connected ways of thinking, centered around the traveler. Our platform connects the travel and hospitality ecosystem. We are making travel a force for social and environmental good. We are passionate about travel. With a unique perspective, at the heart of our industry, we are redesigning the travel of tomorrow.
Amadeus A.I CyberSecurity Scoring
Amadeus Risk Score (AI oriented)Between 750 and 799
Amadeus
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Amadeus Global Score (TPRM)XXXX
Amadeus
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Amadeus Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Amadeus IT Group (or its associated airport check-in systems provider)
Cyber Attack
Rankiteo Explanation
Attack threatening the economy of geographical region
Description: A widespread cyberattack disrupted check-in systems across major European airports, including Brussels, Berlin, and London Heathrow, leading to significant operational chaos. The attack caused mass flight cancellations, prolonged delays, and stranded thousands of passengers over a critical travel period. While the exact method of infiltration remains undisclosed, the incident highlights vulnerabilities in centralized aviation IT infrastructure, particularly in systems managing passenger processing and flight logistics.The financial repercussions include compensation claims from airlines and passengers, reputational damage to both airports and the affected IT provider, and potential regulatory scrutiny over cybersecurity lapses in critical infrastructure. Although no direct data breach (e.g., passenger PII theft) was confirmed in the article, the operational paralysis suggests a targeted disruption aimed at crippling air travel—a sector vital to economic stability. The attack’s ripple effects extended beyond immediate logistical failures, eroding public trust in digital aviation systems and prompting calls for stricter cybersecurity protocols in transport hubs.
Amadeus Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Amadeus
Incidents vs IT Services and IT Consulting Industry Average (This Year)
Amadeus has 78.57% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
Amadeus has 53.85% more incidents than the average of all companies with at least one recorded incident.
Incident Types Amadeus vs IT Services and IT Consulting Industry Avg (This Year)
Amadeus reported 1 incidents this year: 1 cyber attacks, 0 ransomware, 0 vulnerabilities, 0 data breaches, compared to industry peers with at least 1 incident.
Incident History — Amadeus (X = Date, Y = Severity)
Amadeus cyber incidents detection timeline including parent company and subsidiaries
Amadeus Company Subsidiaries
We make the experience of travel better for everyone, everywhere by inspiring innovation, partnerships and responsibility to people, places and planet. Our technology powers the travel and tourism industry. We inspire more connected ways of thinking, centered around the traveler. Our platform connects the travel and hospitality ecosystem. We are making travel a force for social and environmental good. We are passionate about travel. With a unique perspective, at the heart of our industry, we are redesigning the travel of tomorrow.
Loading...
Amadeus Similar Companies
Sopra Steria
Sopra Steria, a major Tech player in Europe with 51,000 employees in nearly 30 countries, is recognised for its consulting, digital services and solutions. It helps its clients drive their digital transformation and obtain tangible and sustainable benefits. The Group provides end-to-end solutions to
Birlasoft
Navigating Change. Powering Progress. | Reimagining the Future with Birlasoft Birlasoft, a powerhouse where domain expertise, enterprise solutions, and digital technologies converge to redefine business processes. We take pride in our consultative and design thinking approach, driving societal pro
Oracle
We’re a cloud technology company that provides organizations around the world with computing infrastructure and software to help them innovate, unlock efficiencies and become more effective. We also created the world’s first – and only – autonomous database to help organize and secure our customers’
IGT Solutions
IGT Solutions is a next-gen customer experience (CX) company, defining and delivering AI-led transformative experiences for the global and most innovative brands using digital technologies. With the combination of Digital and Human Intelligence, IGT becomes the preferred partner for managing end-to-
Artificial Intelligence. Automation. Cloud engineering. Advanced analytics. For business leaders, these are key factors of success. For us, they’re our core expertise. At Sutherland, we are a leading global business and digital transformation partner. Our services span a diversified range of categ
ITC Infotech
ITC Infotech is a global technology solution and services leader providing business-friendly solutions, that enable future-readiness for clients. We seamlessly bring together digital expertise, strong industry-specific alliances, and deep domain expertise from ITC Group businesses. Our solutions and
NEC Corporation has established itself as a leader in the integration of IT and network technologies while promoting the brand statement of “Orchestrating a brighter world.” NEC enables businesses and communities to adapt to rapid changes taking place in both society and the market as it provides fo
TIVIT
TIVIT is a Brazil-based multinational company that offers enterprise-level digital solutions, and operates in ten countries in Latin America. We help our clients develop their businesses by offering industry-leading digital solutions divided into four main categories: Digital Business, Cloud Solutio
HGS
A global leader in optimizing the customer experience lifecycle, digital transformation, and business process management, HGS is helping its clients become more competitive every day. HGS combines automation, analytics, and artificial intelligence with deep domain expertise focusing on digital custo
.png)
Amadeus CyberSecurity News
November 26, 2025 07:28 PM
A comprehensive list of 2025 tech layoffs
A complete list of all the known layoffs in tech, from Big Tech to startups, broken down by month throughout 2024 and 2025.
October 10, 2025 07:00 AM
Sitehop raises £7.5m to boost quantum-safe encryption
UK cybersecurity start-up Sitehop, based in Sheffield, has raised £7.5m in a new funding round led by Northern Gritstone.
October 09, 2025 07:00 AM
Quantum-proof cyber startup Sitehop secures £7.5m round
Sitehop, a cyber startup building encryption future-proofed against quantum cyberattacks, has received a £7.5m seed investment.
October 09, 2025 07:00 AM
Sitehop secures £7.5 million Investment led by Northern Gritstone
Startup future-proofing against quantum-powered cyber attacks raises £7.5m, led by Northern Gritstone. Sheffield-based Sitehop successfully...
October 09, 2025 07:00 AM
Sheffield cybersecurity specialist secures further £7.5m funding - round led by Northern Gritstone
A Sheffield-based company developing encryption to future-proof networks against quantum-powered cyber attacks has raised a further £7.5m in...
September 23, 2025 07:00 AM
NIS2 in the Baltics: How Lithuania, Latvia, and Estonia Differ
The European Union's NIS2 Directive is set to reshape cyber security across all member states. The NIS2 Directive has been ...
September 21, 2025 07:00 AM
Cyberattack Disrupts Check-In at Major European Airports
Cyberattack disrupts check-in systems at european airports such as Heathrow, Brussels, and Berlin, exposing cybersecurity vulnerabilities.
September 20, 2025 07:00 AM
European Airport Cyberattack 2025: MUSE Disruption and State-Sponsored Shadows
ABSTRACT. Imagine you're standing in the vast, echoing halls of Heathrow Airport https://www.heathrow.com/, the pulse of Europe's busiest...
July 25, 2025 07:00 AM
22 cybersecurity startups to watch, according to VCs
Cyber attacks are on the rise, not only growing in number but also in sophistication thanks to developments in technologies such as AI.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Amadeus CyberSecurity History Information
Official Website of Amadeus
The official website of Amadeus is http://amadeus.com.
Amadeus’s AI-Generated Cybersecurity Score
According to Rankiteo, Amadeus’s AI-generated cybersecurity score is 791, reflecting their Fair security posture.
How many security badges does Amadeus’ have ?
According to Rankiteo, Amadeus currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Amadeus have SOC 2 Type 1 certification ?
According to Rankiteo, Amadeus is not certified under SOC 2 Type 1.
Does Amadeus have SOC 2 Type 2 certification ?
According to Rankiteo, Amadeus does not hold a SOC 2 Type 2 certification.
Does Amadeus comply with GDPR ?
According to Rankiteo, Amadeus is not listed as GDPR compliant.
Does Amadeus have PCI DSS certification ?
According to Rankiteo, Amadeus does not currently maintain PCI DSS compliance.
Does Amadeus comply with HIPAA ?
According to Rankiteo, Amadeus is not compliant with HIPAA regulations.
Does Amadeus have ISO 27001 certification ?
According to Rankiteo,Amadeus is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Amadeus
Amadeus operates primarily in the IT Services and IT Consulting industry.
Number of Employees at Amadeus
Amadeus employs approximately 22,756 people worldwide.
Subsidiaries Owned by Amadeus
Amadeus presently has no subsidiaries across any sectors.
Amadeus’s LinkedIn Followers
Amadeus’s official LinkedIn profile has approximately 493,793 followers.
NAICS Classification of Amadeus
Amadeus is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.
Amadeus’s Presence on Crunchbase
No, Amadeus does not have a profile on Crunchbase.
Amadeus’s Presence on LinkedIn
Yes, Amadeus maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/amadeus.
Cybersecurity Incidents Involving Amadeus
As of December 10, 2025, Rankiteo reports that Amadeus has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Amadeus has an estimated 37,378 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Amadeus ?
Incident Types: The types of cybersecurity incidents that have occurred include Cyber Attack.
Incident Details
Can you provide details on each incident ?
Title: Cyberattack on Major European Airports' Check-in Systems
Description: Major European airports including Brussels, Berlin, and London's Heathrow were hit by a cyberattack on check-in systems, causing cancellations and long delays for thousands of passengers.
Type: Cyberattack (likely disruptive, possibly ransomware or DDoS)
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Cyber Attack.
Impact of the Incidents
What was the impact of each incident ?
Incident : Cyberattack (likely disruptive, possibly ransomware or DDoS) AMA5502055092125
Systems Affected: Check-in systems
Downtime: True
Operational Impact: Flight cancellationsLong passenger delays
Customer Complaints: True
Which entities were affected by each incident ?
Incident : Cyberattack (likely disruptive, possibly ransomware or DDoS) AMA5502055092125
Entity Name: Brussels Airport
Entity Type: Airport
Industry: Aviation/Transportation
Location: Brussels, Belgium
Customers Affected: Thousands of passengers
Incident : Cyberattack (likely disruptive, possibly ransomware or DDoS) AMA5502055092125
Entity Name: Berlin Airport
Entity Type: Airport
Industry: Aviation/Transportation
Location: Berlin, Germany
Customers Affected: Thousands of passengers
Incident : Cyberattack (likely disruptive, possibly ransomware or DDoS) AMA5502055092125
Entity Name: Heathrow Airport
Entity Type: Airport
Industry: Aviation/Transportation
Location: London, United Kingdom
Customers Affected: Thousands of passengers
References
Where can I find more information about each incident ?
Incident : Cyberattack (likely disruptive, possibly ransomware or DDoS) AMA5502055092125
Source: Agence France-Presse (AFP)
URL: https://www.afp.com
Incident : Cyberattack (likely disruptive, possibly ransomware or DDoS) AMA5502055092125
Source: Barron's (republished content)
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Agence France-Presse (AFP)Url: https://www.afp.com, and Source: Barron's (republished content).
Additional Questions
Impact of the Incidents
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was Check-in systems.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Agence France-Presse (AFP) and Barron's (republished content).
What is the most recent URL for additional resources on cybersecurity best practices ?
Most Recent URL for Additional Resources: The most recent URL for additional resources on cybersecurity best practices is https://www.afp.com .
.png)
Latest Global CVEs (Not Company-Specific)
Description
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Versions 3.5.4 and below contain a Stored Cross-Site Scripting (XSS) vulnerability in the /WeGIA/html/geral/configurar_senhas.php endpoint. The application does not sanitize user-controlled data before rendering it inside the employee selection dropdown. The application retrieves employee names from the database and injects them directly into HTML <option> elements without proper escaping. This issue is fixed in version 3.5.5.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Description
ZITADEL is an open-source identity infrastructure tool. Versions 4.0.0-rc.1 through 4.7.0 are vulnerable to DOM-Based XSS through the Zitadel V2 logout endpoint. The /logout endpoint insecurely routes to a value that is supplied in the post_logout_redirect GET parameter. As a result, unauthenticated remote attacker can execute malicious JS code on Zitadel users’ browsers. To carry out an attack, multiple user sessions need to be active in the same browser, however, account takeover is mitigated when using Multi-Factor Authentication (MFA) or Passwordless authentication. This issue is fixed in version 4.7.1.
Risk Information
cvss3
Base: 8.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N
Description
ZITADEL is an open-source identity infrastructure tool. Versions 4.7.0 and below are vulnerable to an unauthenticated, full-read SSRF vulnerability. The ZITADEL Login UI (V2) treats the x-zitadel-forward-host header as a trusted fallback for all deployments, including self-hosted instances. This allows an unauthenticated attacker to force the server to make HTTP requests to arbitrary domains, such as internal addresses, and read the responses, enabling data exfiltration and bypassing network-segmentation controls. This issue is fixed in version 4.7.1.
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
Description
NiceGUI is a Python-based UI framework. Versions 3.3.1 and below are vulnerable to directory traversal through the App.add_media_files() function, which allows a remote attacker to read arbitrary files on the server filesystem. This issue is fixed in version 3.4.0.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions are vulnerable to authentication bypass when the authentication type is set to "webserver." When providing an Authorization header with an arbitrary value, a session is associated with the target user regardless of valid credentials. This issue is fixed in versions 16.0.44 and 17.0.23.
Risk Information
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/FreePBX/framework/commit/04224253156543cd9932b90458660b2f19fc0e35#diff-72f14a52840a61504a8e03cd195035b44e488aecd634b001bc6412a04bdc940bR20-R50
- https://github.com/FreePBX/security-reporting/security/advisories/GHSA-9jvh-mv6x-w698
- https://www.freepbx.org/watch-what-we-do-with-security-fixes-%f0%9f%91%80
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=amadeus' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
