Ransomware victim disclosure
← All victimsEgyptAir
listed as egyptair.com 5 sell · Claimed by Funksec · listed 2 years ago
Status timeline
- ListedDec 24, 2024
- Data leakeddate unknown
At a glance
- Group
- Funksec
- Status
- Data leaked
- Country
- Egypt
- Sector
- Transportation/Logistics
- Listed on leak site
- Dec 24, 2024
About the victim
AI dossier — public-source company profileEgyptAir is the flag carrier airline of Egypt, based in Cairo. It operates scheduled passenger and freight services across the Middle East, Europe, Africa, Asia, and the Americas, and is a member of the Star Alliance.
- Industry
- Airlines & Air Transportation
- Address
- Cairo, Egypt
- Founded
- 1932
Attack summary
Severity: high — EgyptAir is a major airline operator handling passenger PII at scale and critical transportation infrastructure; exfiltration of airline data poses significant privacy and operational risk.The ransomware operator claims to have compromised EgyptAir systems and published exfiltrated data. No specific details on encryption status or data types are provided in the available post excerpt.
Data the group says was taken
AI dossier — extracted from the leak post- airline operational data
- passenger information
- business records
Original description
AI-summarised, not from the leak postCertainly! "EgyptAir" is the flag carrier airline of Egypt, based in Cairo. It operates scheduled passenger and freight services to numerous destinations in the Middle East, Europe, Africa, Asia, and the Americas. As a member of the Star Alliance, EgyptAir offers extensive connectivity and frequent flyer benefits. The airline is known for its commitment to safety, customer service, and modernizing its fleet to enhance passenger experience.
Sources
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

