DAL
Company Details
Linkedin ID:
delta-air-lines
Website:
Employees number:
77,842
Number of followers:
1,612,786
NAICS:
481
Industry Type:
Homepage:
delta.com
IP Addresses:
659
Company ID:
DEL_8199326
Scan Status:
Completed
Delta Air Lines Company CyberSecurity Posture
delta.com
Delta Air Lines (NYSE: DAL) is the U.S. global airline leader in safety, innovation, reliability and customer experience. Powered by our employees around the world, Delta has for a decade led the airline industry in operational excellence while maintaining our reputation for award-winning customer service. With our mission of connecting the people and cultures of the globe, Delta strives to foster understanding across a diverse world and serve as a force for social good.
Delta Air Lines A.I CyberSecurity Scoring
DAL Risk Score (AI oriented)Between 750 and 799
DAL
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
DAL Global Score (TPRM)XXXX
DAL
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
DAL Company CyberSecurity News & History
Past Incidents
2
Attack Types
1
Delta Air Lines, Inc.
Breach
Rankiteo Explanation
Attack limited on finance or reputation
Description: The Washington State Office of the Attorney General reported a data breach involving Delta Air Lines, Inc. on April 11, 2018. The breach occurred at [24]7.ai from September 26, 2017, to October 12, 2017, potentially affecting approximately 24,563 residents in Washington State, with impacted information including names and payment card details.
Delta Air Lines
Breach
Rankiteo Explanation
Attack that could injure or kill people
Description: Delta Air Lines Flight 56, an Airbus A330-900 en route from Salt Lake City to Amsterdam, encountered severe turbulence over Wyoming, resulting in an emergency landing at Minneapolis-St. Paul International Airport. The incident caused significant injuries to passengers and crew, with 25 individuals transported to hospitals, including seven crew members. Reports indicated broken ribs, a broken leg, and whiplash among the injuries. The turbulence was described as extreme, with items and people being thrown around the cabin. The Federal Aviation Administration and the National Transportation Safety Board are investigating the incident. While no cyber-related factors were involved, the event highlights operational risks and safety concerns in aviation.
DAL Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for DAL
Incidents vs Airlines and Aviation Industry Average (This Year)
Delta Air Lines has 56.25% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
Delta Air Lines has 29.87% more incidents than the average of all companies with at least one recorded incident.
Incident Types DAL vs Airlines and Aviation Industry Avg (This Year)
Delta Air Lines reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 0 vulnerabilities, 1 data breaches, compared to industry peers with at least 1 incident.
Incident History — DAL (X = Date, Y = Severity)
DAL cyber incidents detection timeline including parent company and subsidiaries
DAL Company Subsidiaries
Delta Air Lines (NYSE: DAL) is the U.S. global airline leader in safety, innovation, reliability and customer experience. Powered by our employees around the world, Delta has for a decade led the airline industry in operational excellence while maintaining our reputation for award-winning customer service. With our mission of connecting the people and cultures of the globe, Delta strives to foster understanding across a diverse world and serve as a force for social good.
Loading...
DAL Similar Companies
Ethiopian Airlines
Ethiopian Airlines Group (Ethiopian) is a true African success story, transforming a visionary dream into a globally renowned reality for nearly eight decades. Operating flights to more than 160 domestic and international passenger, and cargo destinations across five continents, Ethiopian bridges th
China Eastern Airlines, North America
As one of the three major air carriers in China, headquartered in Shanghai, China Eastern Airlines operates 111 domestic and overseas branches across the globe. Flying a fleet of 730 aircraft which is one of the youngest fleets in major airlines worldwide. Moreover, it boasts the largest-scale in-fl
Cathay Pacific
Welcome to the official Cathay Pacific LinkedIn page. We have over 200 destinations in our global network, but want to do more than just move you from A to B. We want to take you further in your journey, and ultimately, to move beyond. And we’re here to do what we can to help you discover what’s nex
GOL Linhas Aéreas
Somos a maior Companhia Aérea do País e estamos entre as que mais crescem no mundo. A nossa história começou em 2001 e, desde então, somos responsáveis por inovar o mercado da aviação no Brasil. Tudo isso graças à dedicação do nosso Time para garantir o nosso Valor número 1, a Segurança, entregand
Etihad
Marhaba! Welcome to Etihad Airways. We are proud to be the national airline of the UAE, flying to 100+ destinations via Abu Dhabi. At Etihad, we don't stop at the border of what's possible, we go beyond it. Proudly inspired by our Emirati identity, we are dedicated to delivering extraordinary trave
SpiceJet Limited
Red. Hot. Spicy. That’s not just our tagline, it’s how we fly. Red reflects the bold spirit we bring to every journey, energetic, passionate, and full of heart. Hot captures the warmth of our service and the vibrant destinations we connect. Spicy is our drive to keep travel exciting through innovati
Grupo Aeromexico, S.A.B. de C.V. is a holding company whose subsidiaries are engaged in commercial aviation and the promotion of passenger loyalty programs in Mexico. Aeromexico, Mexico’s global airline, operates more than 600 daily flights and has its main hub in Terminal 2 of the Mexico City Inter
JetBlue
When JetBlue first took flight in February 2000, our founding goal was to bring humanity back to air travel, and over two decades later, we still put our customers, crewmembers and communities at the center of everything we do. Before we even had aircraft to fly, our founders selected five values
gategourmet
gategourmet has been serving the airline industry for more than 70 years and has become the world’s largest independent provider of airline catering and logistics. We prepare tens of thousands of tasty, nutritious passenger meals and snacks daily and reliably service more than 2 million flights a ye
.png)
DAL CyberSecurity News
October 07, 2025 07:00 AM
Red Hat Breach Exposes 5000+ High Profile Enterprise Customers at Risk
A sophisticated cyberattack has compromised Red Hat Consulting's infrastructure, potentially exposing sensitive data from over 5000...
September 20, 2025 07:00 AM
Cyberattack on Collins Aerospace disrupts flights at Heathrow, other European airports
A cyberattack targeting Collins Aerospace, a provider of check-in and boarding systems for global airlines, disrupted operations at several...
August 30, 2025 07:00 AM
Delta Just Settled a Lawsuit Over Dumped Fuel
In 2020, a Delta Airlines flight had to dump fuel before an emergency landing. This year, the airline settled a lawsuit over it.
July 28, 2025 07:00 AM
Russia State Owned Aeroflot Adds with Hawaiian Airlines, Qantas, WestJet in Facing Severe Cybersecurity Threat, New Update on This for You
In 2025, the aviation industry is facing an escalating crisis in cybersecurity as several major airlines, including Russia's state-owned...
July 18, 2025 07:00 AM
One year after travel meltdown, Delta-CrowdStrike dispute far from over
Saturday marks the anniversary of a meltdown of Delta Air Lines' operations triggered by a faulty software update from cybersecurity vendor...
July 06, 2025 07:00 AM
Now, American Airlines Joins with Oman Air, JetBlue, Delta, United, TAP Air Portugal and More in a Oneworld Alliance Expansion with New Routes Amid FBI Cybersecurity Warning
American Airlines, Oman Air, JetBlue, Delta, United, TAP Air Portugal expand Oneworld Alliance as FBI warns of cybersecurity threats and new...
July 02, 2025 07:00 AM
The Same Cyberhacking Group Breached 3 Airlines In 3 Weeks
WestJet, Hawaiian Airlines and Qantas have confirmed attacks by the prolific hacking group known as Scattered Spider.
June 30, 2025 07:00 AM
Delta Air Locks Thousands of Frequent Flyer Accounts Amid Fears of Major Cyberattack
Delta Air Lines has quietly locked SkyMiles accounts, prompting fears of a cyberattack as experts warn hackers are targeting major U.S....
June 30, 2025 07:00 AM
FBI warns infamous cybercriminal group 'Scattered Spider' is targeting US airlines
The FBI posted a warning on Friday that a notorious cybercriminal group known as "Scattered Spider" has been targeting U.S. airlines.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
DAL CyberSecurity History Information
Official Website of Delta Air Lines
The official website of Delta Air Lines is http://www.delta.com.
Delta Air Lines’s AI-Generated Cybersecurity Score
According to Rankiteo, Delta Air Lines’s AI-generated cybersecurity score is 763, reflecting their Fair security posture.
How many security badges does Delta Air Lines’ have ?
According to Rankiteo, Delta Air Lines currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Delta Air Lines have SOC 2 Type 1 certification ?
According to Rankiteo, Delta Air Lines is not certified under SOC 2 Type 1.
Does Delta Air Lines have SOC 2 Type 2 certification ?
According to Rankiteo, Delta Air Lines does not hold a SOC 2 Type 2 certification.
Does Delta Air Lines comply with GDPR ?
According to Rankiteo, Delta Air Lines is not listed as GDPR compliant.
Does Delta Air Lines have PCI DSS certification ?
According to Rankiteo, Delta Air Lines does not currently maintain PCI DSS compliance.
Does Delta Air Lines comply with HIPAA ?
According to Rankiteo, Delta Air Lines is not compliant with HIPAA regulations.
Does Delta Air Lines have ISO 27001 certification ?
According to Rankiteo,Delta Air Lines is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Delta Air Lines
Delta Air Lines operates primarily in the Airlines and Aviation industry.
Number of Employees at Delta Air Lines
Delta Air Lines employs approximately 77,842 people worldwide.
Subsidiaries Owned by Delta Air Lines
Delta Air Lines presently has no subsidiaries across any sectors.
Delta Air Lines’s LinkedIn Followers
Delta Air Lines’s official LinkedIn profile has approximately 1,612,786 followers.
NAICS Classification of Delta Air Lines
Delta Air Lines is classified under the NAICS code 481, which corresponds to Air Transportation.
Delta Air Lines’s Presence on Crunchbase
No, Delta Air Lines does not have a profile on Crunchbase.
Delta Air Lines’s Presence on LinkedIn
Yes, Delta Air Lines maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/delta-air-lines.
Cybersecurity Incidents Involving Delta Air Lines
As of December 11, 2025, Rankiteo reports that Delta Air Lines has experienced 2 cybersecurity incidents.
Number of Peer and Competitor Companies
Delta Air Lines has an estimated 3,516 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Delta Air Lines ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
How does Delta Air Lines detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an incident response plan activated with yes, and third party assistance with msp airport fire department and paramedics, and recovery measures with medical attention provided to passengers and crew, and communication strategy with delta care team working with customers..
Incident Details
Can you provide details on each incident ?
Title: Delta Air Lines Data Breach
Description: The Washington State Office of the Attorney General reported a data breach involving Delta Air Lines, Inc. on April 11, 2018. The breach occurred at [24]7.ai from September 26, 2017, to October 12, 2017, potentially affecting approximately 24,563 residents in Washington State, with impacted information including names and payment card details.
Date Detected: 2018-04-11
Date Publicly Disclosed: 2018-04-11
Type: Data Breach
Title: Delta Air Lines Flight 56 Emergency Landing Due to Severe Turbulence
Description: A plane made an emergency landing at Minneapolis-St. Paul International Airport after experiencing significant in-flight turbulence, resulting in injuries to dozens of passengers and crew members.
Date Detected: 2023-10-18
Date Publicly Disclosed: 2023-10-18
Type: Physical Incident
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach DEL335072525
Data Compromised: Names, Payment card details
Payment Information Risk: True
Incident : Physical Incident DEL213080925
Operational Impact: Flight diversion and emergency landing
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Payment Card Details and .
Which entities were affected by each incident ?
Incident : Data Breach DEL335072525
Entity Name: Delta Air Lines, Inc.
Entity Type: Company
Industry: Aviation
Customers Affected: 24563
Incident : Physical Incident DEL213080925
Entity Name: Delta Air Lines
Entity Type: Airline
Industry: Aviation
Location: United States
Customers Affected: 275 passengers and 13 crew members
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Physical Incident DEL213080925
Incident Response Plan Activated: Yes
Third Party Assistance: MSP Airport Fire Department and paramedics
Recovery Measures: Medical attention provided to passengers and crew
Communication Strategy: Delta Care Team working with customers
What is the company's incident response plan?
Incident Response Plan: The company's incident response plan is described as Yes.
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through MSP Airport Fire Department and paramedics.
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach DEL335072525
Type of Data Compromised: Names, Payment card details
Number of Records Exposed: 24563
Sensitivity of Data: High
Ransomware Information
How does the company recover data encrypted by ransomware ?
Data Recovery from Ransomware: The company recovers data encrypted by ransomware through Medical attention provided to passengers and crew.
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Physical Incident DEL213080925
Regulatory Notifications: FAA and NTSB investigations
References
Where can I find more information about each incident ?
Incident : Data Breach DEL335072525
Source: Washington State Office of the Attorney General
Date Accessed: 2018-04-11
Incident : Physical Incident DEL213080925
Source: WCCO
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Washington State Office of the Attorney GeneralDate Accessed: 2018-04-11, and Source: WCCO.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Physical Incident DEL213080925
Investigation Status: Under investigation by FAA and NTSB
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Delta Care Team working with customers.
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Physical Incident DEL213080925
Root Causes: Severe turbulence due to chaotic air motion
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as MSP Airport Fire Department and paramedics.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2018-04-11.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2023-10-18.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were names, payment card details and .
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was MSP Airport Fire Department and paramedics.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were names and payment card details.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 308.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Washington State Office of the Attorney General and WCCO.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Under investigation by FAA and NTSB.
.png)
Latest Global CVEs (Not Company-Specific)
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Description
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
Risk Information
cvss3
Base: 8.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
Description
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Risk Information
cvss3
Base: 5.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=delta-air-lines' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
